C 3600 



To: Mamon Obeid 
Location: KNX 5A74 
Art Unit: 3621 
Date: 7/13/2009 

Case Serial Number: 10/890911 



From: Christian Miner 
Location: EIC3600 
KNX 4B68 

Phone:(571)272-3010 
christian.miner@uspto.gov 



Dear Examiner Obeid: 

Please find attached the results of your search for the above-referenced case. The search was 
conducted in Dialog, Proquest, and EBSCOhost. 

I have listed potential references of interest in the first part of the search results. However, please 
be sure to scan through the entire report. There may be additional references that you might find 
useful. 

If you have any questions about the search, or need a refocus, please do not hesitate to contact 
me. 

Thank you for using the EIC, and we look forward to your next search! 



EIC3600 SEARCH RESULTS 



I. POTENTIAL REFERENCES OF INTEREST 3 

A. Dialog 3 

B. Additional Resources Searched 7 

II. INVENTOR SEARCH RESULTS FROM DIALOG 8 

III. TEXT SEARCH RESULTS FROM DIALOG 13 

A. Patent Files, Abstract 13 

B. Patent Files, Full-Text 22 

IV. TEXT SEARCH RESULTS FROM DIALOG 34 

A. NPL Files, Abstract 34 

B. NPL Files, Full-text 44 

V. ADDITIONAL RESOURCES SEARCHED 76 



EIC3600 SEARCH RESULTS 



2 



7/13/2009 



I- Potential R eferences of Interest 



A. Dialog 



Dialog eLink: Order File History 
13/3K/7 (Item 7 from file: 348) 
DIALOG(R)File 348: EUROPEAN PATENTS 
(c) 2009 European Patent Office. All rights reserved. 

00719763 



Method and apparatus enabling software trial using an encryption header 

Verfahren und Vonichtung mit einem Verschlusselungskopfteil, die es ermoglicht, Software zu erproben 
Methode et appareil permettant de prendre des logiciels a l'essai utilisant un en-tete de chiffrement 

Patent Assignee: 

• International Business Machines Corporation: (200 1 20) 
Old Orchard Road; Armonk, NY. 10504; (US) 
(Proprietor designated states: all) 



Inventor: 



• Cooper, Thomas Edward 

858 West Willow Street; Louisville, Colorado 80027; (US) 

• Philips, Hudson Wayne 

4725 Jameston Street; Boulder, Colorado 80301; (US) 

• Pryor, Robert Franklin 

7380 Mt. Meeker Road; Longmont, Colorado 80503; (US) 



Legal Representative: 



• Duscher, Reinhard, Dr. (94081) 

IBM Deutschland GmbH, Intellectual Property, Pascalstrasse 100; 70548 Stuttgart; (DE) 



jCountry Number 


Kind 


Date 


! Patent TP 681233 


Al 


19951 ION (Basic) 


TP 681233 


Bl 


20030618 


Application TP 95105448 


j 19950411 


^Priorities US 235031 


1 19940425 
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Designated States: 

DE; FR; GB; 

International Patent Class (V7): G06F-001/00; G06F-012/14Abstract Word Count: 184 
NOTE: 29 A 29B 

NOTE: Figure number on first page: 29 A 29B 



Legal Status Type Pub. Date Kind Text 






Language Publication: English 
Procedural: English 
Application: English 






jFulltext Availability Available Text Language 


1 1 Ipdatc 


Word Count 


ICLAIMS A l(Hnglish) 


1 l>AB95 


1022 


Sl'l ( A (English) 


HPAB95 


15201 


CLAIMSB i(Hnglish) 


200325 


1224 


ICLAIMS B l(German) 


200325 


11145 


iCLAIMS B l(i'rench) 


200325 


1348 


SPECB i(Hnglish) 


200325 


13659 


iTotal Word Count (Document A) 16226 


ITotal Word Count (Document 15) 17376 


jTotal Word Count (All Documents) 33602 



Specification: ...The interfaces allow ordering and unlocking of the software products contained on the distributed media. 
Unlocking of the software product is accomplished by the reception, validation, and recording of a temporary access 
(decryption) key. 

The file management program is resident in the user-controlled data processing system and becomes a part of the operating 

system in the user's computer. An example of such a resident program (in the PC timer can be used to count down a 

particular predefined period (such as thirty days); alternatively, the counter can be used to decrement through a predefined 
number of trial "sessions" which are allowed during the trial mode of operation. If the key is valid, the file management 
program communicates directly with the... 

Specification: ...The interfaces allow ordering and unlocking of the software products contained on the distributed media. 
Unlocking of the software product is accomplished by the reception, validation, and recording of a temporary access 
(decryption) key. 

The file management program is resident in the user-controlled data processing system and becomes a part of the operating 

system in the user's computer. An example of such a resident program (in the PC timer can be used to count down a 

particular predefined period (such as thirty days); alternatively, the counter can be used to decrement through a predefined 
number of trial "sessions" which are allowed during the trial mode of operation. If the key is valid, the file management 
program communicates directly with the... 



Dialog eLink: Order File History 
13/3K/13 (Item 13 from file: 349) 
DIALOG(R)File 349: PCT FULLTEXT 
(c) 2009 WIPO/Thomson. All rights reserved. 

00320485 
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METHOD FOR SECURELY USING DIGITAL SIGNATURES IN A COMMERCIAL CRYPTOGRAPHIC 
SYSTEM 

PROCEDE PERMETTANT D'UTILISER EN TOUTE SECURITE DES SIGNATURES NUMERIQUES DANS UN 
SYSTEME DE CHIFFRAGE COMMERCIAL 



Patent Applicant/Patent Assignee: 



• BANKERS TRUST COMPANY; 

• SUDIA Frank W; 

• SIRITZKY Brian; 



i Country 


Number Kind 


Date 


i Patent ijWO 


9602993 \2 


19960201 


[Application |WO 


95US9076 


19950719 


! Priorities iiUS 


9427743S 


19940719 



Designated States: (All protection types applied unless otherwise stated - for applications 2004+) 
Language Publication Language: English 
Filing Language: 

Fulltext word count: 14898 



Claims: 



...said digital signature, and wherein a user transaction in said cryptographic system requires verification by a recipient of 
said user transaction, said verification based on information in said digital certificates and requiring said public key, a 
method of controlling access to said public key comprising the steps of: denying access to said public key; providing said 
recipient with at least one message containing rules of said system, said rales including maintaining secrecy of said public 

key; by said recipient, digitally signing said at least one document, by policy in a cryptographic system, said policy 

requiring controlling access to a public key, said method comprising the steps of: denying access to said public key; 
providing a recipient with a message containing rales of said cryptographic system, said r ules including maintaining secrecy 

of said public key; by said recipient, digitally signing said document, by which said document to form a digital 

agreement; and returning said digital agreement to said certifying authority; in response to said indicating by said user, by 
said certifying authority, activating said public key in said secure device. 6e A method as in any one of ...s status; and each 
confirm-to transaction by a user.7* A method as in any one of claims 1 @5 wherein said rales include rules to pay for use by 
said recipient of intellectual property used in creating or operating the system. 8* A method as in claim 1 wherein said user 
transaction is... 



Dialog cLink: 

11/5/5 (Item 5 from file: 2) 

DIALOG(R)File 2: INSPEC 

(c) 2009 The IET. All rights reserved. 



05351065 
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Title: A software authentication system for information integrity 
Author(s): Harn, L.; Hung-Yu Lin; Shoubao Yang 
Author Affiliation: Missouri Univ., Kansas City, MO, USA 
Journal: Computers & Security , vol. 1 1 , no.8 , pp.747-52 
Country of Publication: UK 
Publication Date: Dec. 1992 
ISSN: 0167-4048 
CODEN: CPSEDU 

U.S. Copyright Clearance Center Code: 0167-4048/92/$5.00 

Language: English 

Document Type: Journal Paper (JP) 

Treatment: Practical (P) 

Abstract: The authors describe a software authentication technique based on the public key cryptography for information 
integrity. The software provider can use a secret key to sign any released program and the user can verify the integrity of 
programs obtained from vendors or a trusted information database. The software provider needs to go through a registration 
process to become Ticensed' and obtains certificates from multiple certificate centers before being able to sign any released 
program. Users need only one public key to verily the integrity of the programs ( 13 refs.) 
Subfile(s): C (Computing & Control Engineering) 

Descriptors: data integrity; message authentication; public key cryptography 

Identifiers: software authentication system; information integrity; public key cryptography; software provider; secret key; 
trusted information database; registration process; certificates 
Classification Codes: C6 1 30S (Data security) 
INSPEC Update Issue: 1993-007 
Copyright: 1993, IEE 



17/3, K/l (Item 1 from file: 9) 
DIALOG (R) File 9: Business 
& Industry (R) 

(c) 2009 Gale/Cengage. All rights reserved. 
01026823 

Supplier Number: 23606872 (USE FORMAT 7 OR 9 
FOR FULLTEXT) 

Software ' Signs ' Executable Content 
( 

Authenticode was recently launched by Microsoft; software provides method of 
'signing' executable content with public and private keys ) 



Information Week , p 32 

August 12, 1996 
Document Type: Journal 

ISSN: 8750-6874 ( United States ) 
Language : 

English Record Type: Fulltext 
Word Count: 

116 

TEXT: 

Authenticode, the microsoft software that provides a method of "signing" executable 
content with public and private keys, was introduced last week. The digital- 
signature approach is similar to public-key encryption techniques and lets Web 
browsers validate the source and authenticity of downloadable content. 
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The product uses Verisign Inc."s Digital ID 128-bit signatures to authenticate 
executable content in real time. 

Any program, Java applet, dynamic link library, or ActiveX control can be 
digitally signed by. . . 



21/3.K/16 (Item 1 from file: 636) 

DIAIi)(i(R)l'ilc 636: dale Group Newsletter DB(TM) 
(c) 2009 C.ale/( engage. All rights reserved. 

02868850 Supplier Number: 45822377 (USE FORMAT 7 FOR FULLTEXT) 

Key Escrow Nitty Gritty: How the Criteria would be Implemented 

Export Practitioner , v 9 , n 9 , p N/A 
Sept 30 , 1995 

Language: English Record Type: Fulltext 
Document Type: Magazine/Journal ; Trade 
Word Count: 1168 

. . .to the number of bits needed to decrypt a message which are not 
available over the communications channel. For some encryption algorithms 
the key is defined to be a number of bits which are kept 

secret and a number of bits which are transmitted in the clear (message key 
/ initialization vector / salt) . This criterion only specifies the 
number of secret bits. 

2. The product shall be designed to prevent multiple encryption (e.g. 
triple-DES) . 

One way to do this would be for... 

. . .disabled. 

If one follows the steps under criterion #3, a receiving program could 
verify the escrow certificate contained in the message header, extract the 
escrow public key, and verify that the encrypted message decryption key is also 
found in the header. If it is not there, decryption does not proceed. 

7. The key escrow mechanism allows access to user's... 

. . .with #10. 

Following the example in criterion #3, the software could accept the load of a 
new escrow certificate. The software could store a '"root" public key which is used 
to verify a certificate containing the escrow agent public key which in turn is 
used to sign the individual user's escrow certificate. Hence, the header might 
contain both the escrow agent 



B. Additional Resources Searched 
Financial Times FullText (via ProQuest): No relevant results. 
Internet & Personal Computing Abstracts (via EBSCOhost): No relevant results. 
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Inventor Search Res ults from Diaioq 



Dialog eLink: Order File History 

21/5/1 (Item 1 from file: 350) 

DIALOG(R)File 350: Derwent WPIX 

(c) 2009 Thomson Reuters. All rights reserved. 



0009041623 Drawing available 
WPIAcc no: 1998-599611/199851 
XRPX Acc No: N1998-467001 

Audio and video data communication method - involves using controller which accepts transmitted data, only when 
its random security ID number corresponds with specific pre-generated random number at reception side 

Patent Assignee: SONY CORP (SONY) 
Inventor: I'D KAMI T; MAARI K 

Patent Family ( 1 patents, 1 countries ) 
il'atent Number iKind | Date ^Application Number jkind Date lipdalc l\pe 

IP 10269290 A 1 998 1 009 .11' 1997741 S3 A 19970326 199851 B 



Priority Applications (no., kind, date): JP 199774183 A 19970326 
Patent Details | 



iPatent Number 


kind 


Ian jPgs Draw jliling Notes 


.11' 10209290 


|A 


J A 136 40 



Alerting Abstract JP A 

The method involves generating a random number as a security ID by using a security ID generator ( 19), during data 
communication. The random number is added to the transmission data. At the r eception side, the random number of the 
transmitted data is compared with a pre-generated random number. A controller (16) accepts the received data when the 
random numbers are in accord. 

ADVANTAGE - Prevents impersonating in case of communication of simple money supplement data. 

Title Terms /Index Terms/Additional Words: AUDIO; VIDEO; DATA; COMMUNICATE; METHOD; CONTROL; 
ACCEPT; TRANSMIT; RANDOM; SECURE; ID; NUMBER; CORRESPOND; SPECIFIC ; PRE; GENERATE; 
RECEPTION; SIDE 

Class Codes 

Dialog eLink: Order File History 

23/5/1 (Item 1 from file: 350) 

DIALOG(R)File 350: Derwent WPIX 

(c) 2009 Thomson Reuters. All rights reserved. 



0012442877 Drawing available 
WPI Acc no: 2002-388427/200242 
XRPX Acc No: N2002-304409 

Information processor for PDA transmits stored digital video broadcasted program data to mobile telephone, based 
on demand 

Patent Assignee: SONY CORP (SONY) 
Inventor: MAARI K 

I'atcnl Number Kind IDutn I i\i|lplicti|imuiiVuihboriiKiutb hale I |>dalc I > pc 
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IJP 2002077S39 !A 



120020315 



Priority Applications (no., kind, date): JP 2000253334 A 20000824 



Patent Details ! 


jl'atent Number 


kind 1 an I'jis Draw Tiling Notes i 


IP 20020778'19 


A jjA ;2I ;2S 



Alerting Abstract JP A 

NOVELTY - A receiver (1 1 1) of a video recording server (1 1) receives the digital video broadcast program which is then 
encoded and stored in a memory (1 14). Based on the demand from the mobile telephone (50), the stored data are transmitted. 
DESCRIPTION - INDEPENDENT CLAIMS are also included for the following: 



A. Information processing system; 

B. Information processing method; 

C. Recorded medium storing information processing program 



USE - For transmission of digital television broadcast program, information from digital versatile disk player to mobile 
telephone such as personal digital assistant. 

ADVANTAGE - The broadcast program is viewed and listened reliably using mobile telephone. 

DESCRIPTION OF DRAWINGS - The figure shows the components of the network system with image processing 

apparatus. (Drawing includes non-1 English language text). 

I I Video recording server 
50 Mobile telephone 

I I I Receiver 
1 14 Memory 

Title Terms /Index Terms/Additional Words: INFORMATION; PROCESSOR; TRANSMIT; STORAGE; DIGITAL; 
VIDEO; PROGRAM; DATA; MOBILE; TELEPHONE; BASED; DEMAND 

Class Codes 



File Segment: EPI; 

DWPI Class: T01; W02; W04 

Manual Codes (EPI/S-X): T01-J10D; T01-J10G; T01-M06A1A; T01-N01D1B; T01-S03; W02-C03C; W02-D05C; W04- 
C10A2 



Dialog cLink: Order File History 

23/5/2 (Item 2 from file: 350) 

DIALOG(R)File 350: Derwent WPIX 

(c) 2009 Thomson Reuters. All rights reserved. 



0009041622 Drawing available 
WPIAcc no: 1998-599610/199851 
XRPX Acc No: N1998-467000 

Digital database distribution management method - involves computing service fee information using decoded 
utilisation information based on which service fee allocation is carried out 
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Patent Assignee: SONY CORP (SONY) 
Inventor: MAARI K 



Patent Family ( 5 patents, 2 countries ) 


i Patent Number Kind j Date Application Number Kind 


Dale lUpdate jType 


i.li' 10269289 jA 1 99cS 1009 jJP 1997741N2 jA 


j 19970326 4 9985 1 jB 


l iS 2004007 U51 


A 1 1200404 15 I S 1 99840093 A 


• 1 VvoU.'Z4 SZUU4Z0 :!> 




US 20030909 II jA 


120031022 


US 2004 7U.7 


Al 20040603 US 1 99X46693 \ 


119980324 1200436 F 




j US 2003690747 A 


[20031022 


I S 7 1 20604 T.2 |2( )( 16 1 0 1 0 jl JS 1 99846693 A 


1 1 9980324 |200607 F 


j US 2003690747 |A 


[20031022 


.11-3994466 IB' 1 P007 K 1 1 7 .IP l')')7741S 1 A 


i 19970326 1200770 jF 



Patent Details 


i Patent Number Kind Ian 


l»5is jDraw 


Filing Notes 


IP Kt2(.'»2N«« \ )\ 


39 140 




US 2004007345 1 M FN 




Division of application 


US 199846693 


1 s 2004 7K.7 \\ I N 




Division of application 


US 199846693! 


US 7120604 113 I'.N 


1 


Division of application 


US 199846693 


.IP 3994466 |li2 |.IA 


52 


Previously issued patent 


JP 10269289 



Alerting Abstract JP A 

The method involves encrypting digital data using specific encryption key. The encrypted data is transmitted to requested 
party based on the received transmission demand. The encrypted data is decoded using the encryption key and is transmitted. 
The billing information corresponding to the utilised digital data for every user is determined based on the transmitted data. 
The determined billing information is then transmitted to the corresponding user. The utilisation information received by user 
is judged and decoded. The service fee for the utilised information to be collected from the respective user is determined 
based on the decoded data. Then allocation of service fee is carried out. 
ADVANTAGE - Prevents copy or unauthorised usage of digital data. 

Title Terms /Index Terms/Additional Words: DIGITAL; DATABASE; DISTRIBUTE; MANAGEMENT; METHOD; 
COMPUTATION; SERVICE; FEE; INFORMATION; DECODE; UTILISE; BASED; ALLOCATE; CARRY 

Class Codes 



Dialog eLink: Order File History 
23/5/3 (Item 1 from file: 347) 
DIALOG(R)File 347: JAPIO 
(c) 2009 JPO & JAPIO. All rights reserved. 

07209407 **Image available** 

INFORMATION PROCESS AND PROCESSING METHOD, AND MEDIUM WITH PROGRAM STORED 
TEHREIN 



Pub. No.: 2002-077839 [JP 2002077839 A ] 
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Published: March 15, 2002 (20020315) 

Inventor: MAARI KOUICHI 

Applicant: SONY CORP 

Application No.: 2000-253334 [JP 2000253334] 

Filed: August 24, 2000 (20000824) 

International Class: H04N-007/14; G06F-017/60; H04N-005/44; H04N-005/445; H04N-007/24; H04N-007/173 
ABSTRACT 



PROBLEM TO BE SOLVED: To make possible to view a digital broadcast even on a potable information terminal. 

SOLUTION: In a digital portable telephone 50 with camera, an image recording server 1 1 is designated to record a program 
of digital broadcast. The image recording server 1 1 receives a designated program through a receiver 11, decodes it through a 
decoder 112 and encodes it through an encoder 1 13 suitably for the digital portable telephone 50 with camera. Encoded 
content data is stored in a storage unit 1 14. When a user views a recorded program, the user request the image recording 
server 1 1 . In response to the request, the image recording server 1 1 reads out a requested content data from the storage unit 
1 14 and delivers it to the digital portable telephone 50 with camera. 

COPYRIGHT: (Q2002JPO 

Dialog eLink: Order File History 

7/3K/1 (Item 1 from file: 348) 

DIALOG(R)File 348: EUROPEAN PATENTS 

(c) 2009 European Patent ( )ffice. All rights reserved. 

00677495 

Non-volatile memory device 
Nichlfluchtige I lalbleileranordnung 
Dispositif de memoire remanente 

Patent Assignee: 

• SONY CORPORATION; (214021) 

7-35 Kitashinagawa 6-chome Shinagawa-ku; Tokyo 141; (JP) 
(Proprietor designated states: all) 



Inventor: 



• Arase, Kenshiro, c/o SONY CORPORATION 

7-35, Kitashinagawa 6-chome; Shinagawa-ku, Tokyo; (JP) 

• Maari, Koichi, c/o SONY CORPORATION 

7-35, Kitashinagawa 6-chome; Shinagawa-ku, Tokyo; (JP) 

• ...JP) 

• Maari, Koichi, c/o SONY CORPORATION... 
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Legal Representative: 



• Thevenet, Jean-Bruno et al (39781) 

Cabinet Beau de Lomenie 158, rue de l'Universite; 75340 Paris Cedex 07; (FR) 



I Country 


Number 


Kind 


1 Date | 


Patent IP 


649172 


A2 


19950419 (Basic) 


[hp 


649172 


A3 


[19951025 


HP 


649172 


Bl 


[20020102 


[Application [LP 


94402301 




! 19941014 


Priorities [JP 


932587 1 1 




119931015 


[JP 


93264639 




119931022 



Designated States: 

DE; FR; IT; 



International Patent Class (V7): H01L-027/1 15; H01L-021/8247 Abstract Word Count: 73 
NOTE: 5 

NOTE: Figure number on first page: 5 
Legal Status Typo Pub. Date Kind Text : 



Language Publication: English 
Procedural: English 
Application: English 



[Kulltext Availability Available Text Language 


Update Word Count 


[CLAIMS A [(English) 


HPAB95 217 


SPEC A [(English) 


EPAB95 5469 


ii CLAIMS B [(English) 


200201 99 


[CLAIMS B [(German) 


200201 85 


[CLAIMS B [(French) 


200201 130 


[SPECB [(English) 


200201 2843 


[Total Word Count (Document A) 5687 


[Total Word Count (Document B) 3 157 


Total Word Count (All Documents) 8844 
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"I- Text Search Results from Dialog 



A. Patent Files, Abstract 



File 350:Derwent WPIX 1963-2009/UD=200943 

(c) 2009 Thomson Reuters 
File 347:JAPIO Dec 1976-2009/Mar (Updated 090708) 

(c) 2009 JPO & JAPIO 



Set Items Description 

51 2153 (CONFIRM??? OR CONFIRMATION OR ACKNOWLEDG? ? ? OR ACKNOWLEDGEMENT OR 
AFFIRM??? OR ATTEST??? OR CERTIFY??? OR CHECK??? OR SUBSTANTIAT? ? ? OR VERIFY??? OR 
PROVE? ? OR PROVING OR VAL I DAT ? ? ? OR AUTHENTICITY) (10N) ((PUBLIC OR PRIVATE OR 
SYSTEM OR SECRET OR SYMMETRIC OR SYNCHRONOUS OR CONTENT OR ASSESS OR DECRYPTION OR 
ASYMMETRIC OR SYMMETRIC) ( ) KEY? ? OR PKI OR PGP OR WEB () TRUST) 

52 11753938 SI (5N) PLAYER OR PLAYERS OR RECORDER OR RECORDERS OR PLAYBACK OR 
DEVICE OR DEVICES OR VCR OR VCRS OR DVDR OR DVDRS OR APPARATUS OR DVR OR 
DIGITAL () VIDEO () RECORDER? ? OR PC OR PCS OR COMPUTER? ? OR DESKTOP? ? OR 
WORKSTATION? ? OR PROGRAM? ? OR APPLICATION? ? OR MODULE? ? 

53 186403 USAGE (3N) (CONDITIONS OR TERMS OR RULES OR RESTRICTIONS OR RIGHTS 
OR LIMITATIONS) OR (LIMIT??? OR RESTRICT??? OR SPECIFI?? OR PERMITTED OR FIXED OR 
DEFINED OR STIPULATED OR PREDEFINED OR PRESET OR PREESTABLISHED OR PREDETERMINED) 
(3N) (NUMBER OR TIMES OR COPIED OR COPIES OR PLAYED OR DOWNLOAD??) OR 
AVAILABILITY () DATES OR USAGE () PERIODS 

54 61216 (CRYPTOGRA? OR (ELECTRONIC OR DIGITAL )()( SEAL? ? OR SIGNATURE? ? OR 
CERTIFICAT? ? ? OR ENVELOPE? ?) OR ENCRYPT??? OR CIPHER? ? OR CYPHER? ? OR HASH?? OR 
ENCOD??? OR ENC?PHER? ? ) (5N) (CONTENT OR IMAGE OR IMAGES OR PICTURE OR PICTURES OR 
ART OR ARTWORK? ? OR GRAPHIC OR GRAPHICS OR ILLUSTRAT? OR PHOTO OR PHOTOS OR 
PHOTOGRAPH OR PHOTOGRAPHS OR PHOTOGRAPHY OR MOVIE? ? OR FILM? ? OR VIDEO OR VIDEOS 
OR ALBUM OR ALBUMS OR TRACK OR TRACKS OR MP 3 OR MP 3 MP ( ) 3 OR (MPEG()1 OR 

MPEG1) ()AUDIO()LAYER()3 OR GAME OR GAMES CD OR CDS OR COMPACT ( ) (DISK? ? OR DISC? ?) 
OR DVD OR DVDS OR MUSIC OR SONG OR SONGS OR AUDIOVISUAL) 

55 226155 (UNENCOD??? OR UNCOD??? OR UNENCRYPT??? OR DECRYPT??? OR DECOD??? 
OR DEC?PHER? ? ? OR KEY OR KEYS) (5N) (MESSAGE? ? OR SIGNAL? ? OR PACKET? ? OR 
TRANSMISSION? ? OR BLOCK? ? OR INFORMATION OR DATA) 

56 151087 (CONTENT OR IMAGE OR IMAGES OR PICTURE OR PICTURES OR ART OR 
ARTWORK? ? OR GRAPHIC OR GRAPHICS OR ILLUSTRAT? OR PHOTO OR PHOTOS OR PHOTOGRAPH OR 
PHOTOGRAPHS OR PHOTOGRAPHY OR MOVIE? ? OR FILM? ? OR VIDEO OR VIDEOS OR ALBUM OR 
ALBUMS OR TRACK OR TRACKS OR MP 3 OR MP 3 MP ( ) 3 OR (MPEG()1 OR 

MPEG1) ()AUDIO()LAYER()3 OR GAME OR GAMES CD OR CDS OR COMPACT ( ) (DISK? ? OR DISC? ?) 
OR AUDIOVISUAL OR DVD OR DVDS OR MUSIC OR SONG OR SONGS OR PRODUCT OR UNIQUE) (3N) 
(ID OR IDS OR IDENTIFICATION OR NUMBER? ? OR IDENTIFIER? ?) 

57 117 AU= (MAARI , K? OR MAARI K? OR MAARI (IN) (K OR KOICHI)) 

58 1554519 IC=G06F 

59 541 S1(5N) (PLAYER OR PLAYERS OR RECORDER OR RECORDERS OR PLAYBACK OR 
DEVICE OR DEVICES OR VCR OR VCRS OR DVDR OR DVDRS OR APPARATUS OR DVR OR 
DIGITAL () VIDEO () RECORDER? ? OR PC OR PCS OR COMPUTER? ? OR DESKTOP? ? OR 
WORKSTATION? ? OR PROGRAM? ? OR APPLICATION? ? OR MODULE? ?) 
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510 19 59 AND S3 

511 lb SIO AND (S4 OR S5 OR S6) 

512 b6 S9 AND S4 

513 43 S12 AND S5 

514 9 S13 AND S6 

515 7 S14 NOT Sll 

516 1 S15 NOT AY>1997 

517 88 S9 NOT AY>1997 

518 38 S17 AND S8 

519 6 S18 AND (CONTENT OR IMAGE OR IMAGES OR PICTURE OR PICTURES OR ART 



OR ARTWORK? ? OR GRAPHIC OR GRAPHICS OR ILLUSTRAT? OR PHOTO OR PHOTOS OR PHOTOGRAPH 
OR PHOTOGRAPHS OR PHOTOGRAPHY OR MOVIE? ? OR FILM? ? OR VIDEO OR VIDEOS OR ALBUM OR 
ALBUMS OR TRACK OR TRACKS OR MP 3 OR MP3 MP ( ) 3 OR (MPEG ( ) 1 OR 

MPEG1) ()AUDIO()LAYER()3 OR GAME OR GAMES CD OR CDS OR COMPACT ( ) (DISK? ? OR DISC? ?) 
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Secure content delivery method for electronic transaction - involves encapsulating and encrypting digital information 
within containers and delivering them to user in protected environment 
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Alerting Abstract WO A2 

The method involves encapsulating digital information within one or more digital containers. At least one portion of the 
information is encrypted. At least partially secure control information is associated for managing interaction with the 
encrypted digital information and/or the digital container. 

One or more of the digital containers are delivered to a digital information user. A protected processing environment is 
employed to securely control decryption of at least a portion of the digital information. 
ADVANTAGE - Provides secure chain of handling and control. 
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Information dissemination control system - has information structured logically to incorporate usage history and 
allowable access window before encryption into header and body portions 
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Alerting Abstract EP A2 

The appts controls the dissemination of digital information. Digital information is structured logically to incorporate usage 

history and allowable access window before it is encrypted in a header and a body. The end user accesses the digital 

information with a tamper-proof controlled information access device by decrypting the digital information. 

A controller disposed in the controlled information access device permits end users to access transparently uncontrolled 

information. Controlled digital information will be accessed as long as the conditions specified by the information provider 

are met. The controlled information may be disseminated in either an on-line or off-line manner. 

I JS1 -/ADVANTAGE - Provides transparent access to uncontrolled digital information together with controlled digital 

information with same access appts. 
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Document class verification method - verifies documents to assure that information in documents is authenticated and 
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Alerting Abstract EP Al 

The method provides enabling information for enabling the retrieval of a decryption key from any document in a selected 
group of class of documents. It is determined if the document is indeed in the selected group. If it is, it retrieves the 
decryption key (Di) from the document. 

The encrypted information (Ei[M]) is decrypted to obtain the decrypted information (Di[Ei[M]]) from which the 
information (M) is then derived from the document. The decrypted encrypted information is compared with the information 
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(M) to verify the information contained in the document as being authentic and unchanged. 

ADVANTAGE - Provides for easy method of verification of document, such as driving licence or similar when presented as 
proof of identity by bearer. 
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Digital content transformation method in consumer electronic device, involves establishing preliminary control 
channel when exchanged hashed random challenges match expected values 
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Alerting Abstract US Al 

NOVELTY - The random challenges which are exchanged between the two consumer electronic devices, are encrypted with 
secret key and are hashed. The hashed random challenges are exchanged and are compared with expected value. The digital 
content is transferred over a preliminary control channel which is established, when hashed random challenge match the 
expected value. 

USE - For transferring digital audio/video content between consumer electronic (CE) devices such as DVD player/recorder, 
digital television, set-top boxes, digital satellite service receivers as well as applications running on computers through IEEE 
1394 bus, Ethernet, asynchronous transfer mode (ATM) network, cable television system, telephony network. 
ADVANTAGE - Allows for high level of content protection for consumer electronics equipment and computer systems. 
DESCRIPTION OF DRAWINGS - The figures show the flow diagram of the authentication and preliminary control channel 
key generation. 
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Encrypted communication system for limiting damage caused by leaked key - distributes pair of keys on sub-group 
basis to receivers and alternates which key is currently relevant for use, for decrypting received signal 
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Alerting Abstract EP A2 

The communication system has a single transmitter sending signals to a number of receiver stations, e.g. encoded cable 
television signals. The transmissions may be encrypted requiring the receivers to hold a decrypting key. The receivers are 
arranged in sub-groups and each sub-group has a pair of security keys from a larger key set distributed to it. 
A transmission to a sub-group is encrypted with one of the keys. The receiver decrypts the transmission using both keys and 
uses a test to determine the correct decryption. The relevant key is then used for further decryption. The test algorithm can be 
distributed in an encrypted form. 

ADVANTAGE - Limits damage caused by leaked keys by operating in sub-groups. Improves security levels by using 
alternating keys. 
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54 97223 (CRYPTOGRA? OR (ELECTRONIC OR DIGITAL )()( SEAL? ? OR SIGNATURE? ? OR 
CERTIFICAT? ? ? OR ENVELOPE? ?) OR ENCRYPT??? OR CIPHER? ? OR CYPHER? ? OR HASH?? OR 
ENCOD??? OR ENC?PHER??) (10N) (CONTENT OR IMAGE OR IMAGES OR PICTURE OR PICTURES OR 
ART OR ARTWORK? ? OR GRAPHIC OR GRAPHICS OR ILLUSTRAT? OR PHOTO OR PHOTOS OR 
PHOTOGRAPH OR PHOTOGRAPHS OR PHOTOGRAPHY OR MOVIE? ? OR FILM? ? OR VIDEO OR VIDEOS 
OR ALBUM OR ALBUMS OR TRACK OR TRACKS OR MP 3 OR MP 3 MP ( ) 3 OR (MPEG()1 OR 

MPEG1) ()AUDIO()LAYER()3 OR GAME OR GAMES CD OR CDS OR COMPACT ( ) (DISK? ? OR DISC? ?) 
OR DVD OR DVDS OR MUSIC OR SONG OR SONGS OR AUDIOVISUAL) 

55 196876 (UNENCOD??? OR UNCOD??? OR UNENCRYPT??? OR DECRYPT??? OR DECOD??? 
OR DEC?PHER? ? ? OR KEY OR KEYS) (10N) (MESSAGE? ? OR SIGNAL? ? OR PACKET? ? OR 
TRANSMISSION? ? OR BLOCK? ? OR INFORMATION OR DATA) 

56 351791 (CONTENT OR IMAGE OR IMAGES OR PICTURE OR PICTURES OR ART OR 
ARTWORK? ? OR GRAPHIC OR GRAPHICS OR ILLUSTRAT? OR PHOTO OR PHOTOS OR PHOTOGRAPH OR 
PHOTOGRAPHS OR PHOTOGRAPHY OR MOVIE? ? OR FILM? ? OR VIDEO OR VIDEOS OR ALBUM OR 
ALBUMS OR TRACK OR TRACKS OR MP 3 OR MP 3 MP ( ) 3 OR (MPEG()1 OR 

MPEG1) ()AUDIO()LAYER()3 OR GAME OR GAMES CD OR CDS OR COMPACT ( ) (DISK? ? OR DISC? ?) 
OR AUDIOVISUAL OR DVD OR DVDS OR MUSIC OR SONG OR SONGS OR PRODUCT OR UNIQUE OR 
SECURITY OR DIGITAL) (5N) (ID OR IDS OR IDENTIFICATION OR NUMBER? ? OR IDENTIFIER? 
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Specification: ...602 provides the following RPC based service providers/requestors (each of which have an RPC interface or 
"RSI" that communicates with RPC manager 732): SPE device driver 736 (this SPE device driver is connected to an SPE 503 
in the preferred embodiment); HPE Device Driver 738 (this HPE device driver is connected to an HPE 738... concurrently 
executing tasks may not be able to process using the same often-needed data structure in a single-threaded SPE 503. This 
may effectively limit the number of concurrent tasks to one. Additionally, single-threadedness may eliminate the capability 

of producing accurate summary budgets based on a number of concurrent tasks since as the pages are compared and 

swapped. Even though this virtual paging solution might be workable for allowing single threading in some applications, the 
vendor limitations mentioned above may limit the use of such single threaded implementations in some cases to dedicated 
hardware. Any implementation that supports multiple users (e.g., "smart home" set tops, many desk tops and certain PDA 
applications, etc.) may hit limitations of a single threaded device in certain circumstances. 

It is preferable when these limitations are unacceptable to use a full "multi-threaded" data structure write capabilities. For 
example, a type of "two-phase commit" processing of the type used by database vendors may e.g., RTC 528). 

Memory manager 578 is responsible for allocating and deallocating memory; supervising sharing of memory resources 
between processes; and enforcing memory access/use restriction. The SPE kernel/dispatcher memory manager 578 typically 

initially allocates all memory to kernel 552, and may be configured to permit only process-level access may be 

represented using a bit map allocation vector, for example. In a memory block, a group of contiguous memory pages may 
start at a specific page number. The size of the block is measured by the number of memory pages it spans. Memory 

allocation may be recorded by setting/clearing the appropriate storage 562. This request may be in the form of an RPC 

call to secure database manager 566 to retrieve the load module and associated data structures, and a call to encrypt/decrypt 
manager 556 to decrypt the load module before storing it in memory allocated by memory manager 578. 
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In somewhat more detail, the preferred embodiment executes a load module 1 100 store the load module 1 100. The load 

module execution manager 568 may copy the load module into that memory page, and queue the page for decryption and 
security checks by encrypt/decrypt manager 556 and key and tag manager 558. Once the page is decrypted and checked, the 
load module execution manager 568 checks the validation tag and inserts the load module into the list of paged in modules 
and... registration table 460 records, user/object table 462 records, URT 464 records, and PERC 808 records. This "open 
channel" task may preferably place calls to key and lag manager 558 to validate and correlate the tags associated with these 
various records to ensure that they are authentic and match. The preferred embodiment process then may write appropriate... 
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Specification: ...a secure, flexible, general purpose foundation that can accommodate many different rights applications, that 
is, many different business models and their respective participant requirements. 

A rights application under VDE is made up of special purpose pieces, each of which can correspond to one or more basic 
electronic processes needed for a.. .evolving agreement may develop between all value chain par ticipants as content control 
information passes along its chain of handling. This evolving agreement can establish the rights of all parties to content 
usage information, including, for example, the nature of information to be received by each party and the pathway of 

handling the present invention is the core secure transaction control arrangement, her ein called an SPU (or SPUs), that 

typically must be present in each user's computer, other electronic appliance, or network. SPUs provide a trusted 
environment for generating decryption keys, encrypting and decrypting information, managing the secure communication of 
keys and other information between electronic appliances (i.e. between VDE installations and/or between plural. ..the request, 
or how the service request will be fulfilled. This feature supports families of services that may be scaled and/or customized 
for specific applications. Service requests can be forwarded and serviced by different processors and/or different sites as 
easily as they can be forwarded and serviced by a...concurrentiy executing tasks may not be able to process using the same 
often-needed data structure in a single-threaded SPE 503. This may effectively limit the number of concurrent tasks to one. 
Additionally, single-threadedness may eliminate the capability of producing accur ate summary budgets based on a number of 

concurrent tasks since tops, many desk tops and certain PDA applications, etc.) may hit limitations of a single threaded 

device in certain circumstances. 
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It is preferable when these limitations are unacceptable to use a full "multi-threaded" data structure write capabilities. For 
example, a type of "two-phase commit" processing of the type used by database vendors may e.g., RTC 528). 

Memory manager 578 is responsible for allocating and deallocating memory; supervising sharing of memory resources 
between processes: and enforcing memory access/use restriction. The SPE kernel/dispatcher memory manager 578 typically 

initially allocates all memory to kernel 552, and may be configured to permit only process-level access may be 

represented using a bit map allocation vector, for example. In a memory block, a group of contiguous memory pages may 
start at a specific page number. The size of the block is measured by the number of memory pages it spans. Memory 
allocation may be recorded by setting/clearing the appropriate... SPU 500 is not being paused or probed, and other internal 
checks on the operation of SPU 500 are made to detect tampering. 

The encryption/decryption engine 522 generates an interrupt when a block of data has been processed. The kernel interrupt 
handler 584 adjusts the processing status of the block -being encrypted or decrypted, and passes the block to the next stage 
of processing. The next block scheduled for the encryption service then has its key moved into the encrypt/decrypt engine 
522... 
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Specification: ...be kept in the safe custody of the software maker. This greatly increases the security of encryption. (2) (A) 
Encryption (digital signature) of marking position information, etc. and decryption and reproduction of optical disk position 
information, etc., which have been briefly described in (1), will now be described in more detail. (B) Various mechanism for 

piracy prevention will also be described measured at the optical disk maker, step 695 where the position information is 

encrypted (or a digital signature is appended), step 698 where the position information is decrypted (or the signature is 
verified or authenticated) in the reproduction apparatus, and step 735w where a check is made to determine whether the disk 

is then compressed in step 735d, and the compressed position information H is obtained in step 735e. In step 695, the 

ciphertext of the compressed position information H is constructed. First, in step 695, a secret key, d, of 512 or 1024 bits, 

and secret keys, p and q, of 256 or 5 12 bits, are set, and in step 695b, encryption is actually located in the position on the 

optical disk indicated by the position information. In step 736d, it is checked whether the difference between the decrypted 
position information and the actually measured position information falls within a tolerance. If the check is OK in step 

736e, the process proceeds to step 736h to output software or data or execute process from step 735a to step 735e is the 

same was that for the RSA function. In step 735f, authentication ciphertext for the compressed position information H is 
constructed. First, in step 735g, secret keys X (128 bits or over) and K are set, and in step 735h, a public system parameter G, 

a point on an ellipse, is determined reduce the time before the reproduction starts. This system therefore is suitable for 

application to consumer reproduction apparatus (b) Complex encryption (digital signature) using master key, subkey, etc. Not 
only the marking position information but information concerning the features of.contents of the software stored on the 
optical disk and an anti-piracy identifier are subjected to encryption (digital signature). Furthermore, two kinds of 
encryption keys, master key and subkey, are used. A specific example is described below in which a secret key encryption... 
...software maker 9002, to be described later, via a communication line 9003. When a request for encryption is made from the 
software maker 9002, the key management center 9001 receives data, to be encrypted, via a network 9003 and encrypts the 
data using the master secret key. For simplicity of explanation, it is assumed here that the software maker 9002 also includes 

a disk manufacturing factory. Therefore, the software maker 9002 here manufacturing process at the disk manufacturing 

factory illustrated in Figure 1, in addition to the production of software. That is, when manufacturing optical disks of movie 
software, encryption for prevention of illegal duplications is also performed. To accomplish the encryption, the software 

maker 9002 obtains an exclusive sub secret key from the key performed using a sub public key corresponding to the sub 

secret key to be used in the second encryption step, and using a software feature information and anti-piracy identifier. The 
information is transferred to the key management center 9001 via the communication line 9003. The software feature 

information refers to the information describing the contents of the movie software written on piracy prevention using 

second ciphertext is "1"; otherwise, the identifier is "0". In this example, the identifier is "1", needless to say. (1-2) The key 
management center 9001 encrypts the information transferred from the software maker 9002, by using the master secret key 
maintained at the center, and sends the encrypted information back to the software maker 9002. The thus created ciphertext 

is referred to as the first ciphertext. (1-3) The software maker 9002 records the form a marking on each optical disk. (1-6) 

Further, the software maker 9002 detects the position of the marking and encrypts the obtained position information by 
using the sub secret key maintained at the maker. The thus encrypted information is referred to as the second ciphertext. 

Since it is created by encrypting the position information, the second ciphertext is different from one optical disk the 

optical disk, and using the master public key stored in the ROM, decrypts the first ciphertext which contains in encrypted 
form the sub public key corresponding to the sub secret key, the software feature information, and the anti-piracy identifier 
(2-2) In the meantime, the player 9004 extracted the software feature information from the contents of the movie software 
recorded on the optical disk. The extracted software feature information is compared with the software feature information 
obtained by decryption in (2-1); if they do not agree, the optical disk is judged as being an illegally duplicated one, and the 

subsequent reproduction operation is to make an illegal copy by altering the identifier to "0", his effort will be thwarted 

because the identifier is encrypted using the master secret' key after being combined with the software feature information, 
etc., as earlier described. (2-4) First, the second ciphertext recorded on the optical disk is read out. Then, the second 
ciphertext, which is the encrypted version of the position information, is decrypted using the sub public key obtained by 
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decryption in (2-1). (2-5) Using the decrypted position information, it is checked whether the marking is actually formed in 
the position on the optical disk indicated by the position information. Then, the actually measured marking position 
information is compared with the position information decrypted in (2-4). If they do not agree, the optical disk is judged as 

being an illegally duplicated one, and the reproduction operation is stopped a Galois field, etc., and a one-direction hash 

function 864a such as SHA and MD5, to create software feature information 863. The software feature information 863 is 
then combined with a sub public key 861 special to the software maker and an anti-piracy identifier 865 as a copyright 

identifier, into one data block which is then encrypted in and a flag of one bit to indicate whether software dubbing is 

prevented or not. Since the anti-piracy identifier 865 and the sub public key 861 are combined with the software feature 
information 863 unique to the software and are encrypted together by using the master secret key for public key encryption, 
it is not possible to alter them. The anti-piracy identifier 865 and the sub public key 861 are combined with the software 
feature information unique to the software, into one data block which is then encrypted by the secret key. If the software 
feature information 863 consists of 256 bits, there are 2256 possible variations. This means that when software feature 
information is extracted from data obtained by authoring a not is therefore important. In the present invention, the anti- 
piracy identifier 865, including the anti-piracy identifier, is encrypted together with the software feature information by 
using a secret key, and recorded in a ciphertext recording section on the master disk. The reproduction apparatus decrypts the 
ciphertext with a prescribed public key.. This prevents illegal alterations from being made to either data. The only way left to 
pirates is to replace the whole portion of the first ciphertext, which contains the software feature information 863 and the... 
...the latter as the second software feature information. Both kinds of information are the same in that they relate to the 
contents of the same movie software, but different in that the former is written in encrypted form at the time the optical disk 

is manufactured, while the latter is extracted by examining the contents of the actually recorded movie software at with 

which the company maintains the security of its software on its own responsibility. As already described with reference to 
Figure 32, the software feature information and the sub public key the software company keeps are jointly encrypted, using 

the master secret key, into the first ciphertext. The reproduction apparatus decrypts the first ciphertext by applying key on 

software locked or unlocked at their option. This in turn means that pirates cannot produce pirated disks unless they steal the 
sub secret key information unique to the software from the software maker. In Figure 32, the software maker combines disk 

physical position information 868 and disk II) 869, and In Figure 36, the software company 871a first sets its own sub 

secret key 876, and computes the sub public key 861. The sub public key 861 is combined with the software feature 
information 861 of the software to be recorded, and transmitted to the key issuing center 872 via a network such as the 
Internet. The key issuing center 872 encrypts the combined signal with the master secret key 866a and sends back the 
encrypted master public key 858 to the software company. The software company combines it with the software, andsends 

the combined the disk 800 is produced. Referring next to Figure 37, the software company 871b forms a marking on the 

disk 800, reads the marking position information, encrypts the position information with the sub secret key 876 
corresponding to the sub public key, and, using a pulsed laser 813, records the encrypted information on the disk 800b in the 

form of a barcode. A detailed description of the recording operation has already be given and will not be reproduction 

apparatus in step 876c, the first ciphertext is decrypted into plaintext in step 876b. In step 876d, the plaintext of the first 
software feature information 863 and sub public key 861 is obtained and in step 876f, it is checked against the second 

software feature information extracted using the one-direction hash function. If the is stopped; if the check is OK, the sub 

public key is output in step 876h. If alterations have been made to the sub public key or software attributes by a pirate, the 
two kinds of information do not agree, so that the reproduction of an illegal disk is prevented. The legitimate sub public key 
is thus obtained at the reproduction apparatus. In the disk check step 875, the sub public key is input in step 876k, and the 
second ciphertext, i.e., the public key cipher 859 (see Figure 32), is reproduce in step 876m. In step 876n, the second 
ciphertext is decrypted into plaintext by using the sub public key, and in step 876p, the marking position information is 
obtained. In this case, the marking position information cannot be altered illegally unless the sub secret key 876 (see Figure 
32) corresponding to the sub public key is leaked out. In step 876p, the actual position of the marking formed on the.. .first 
feature of the encryption system of the present invention is the use of two encryption functions, a public key encryption 
function and a secret key encryption function, when encrypting marking position information, etc. on each optical disk. The 
following description deals with problems encountered when actually implementing a piracy prevention method that uses 
public key cipher, and also deals with a method of implementation. The public key cipher here refers to the position 
information encrypted using a public key encryption function (for example, an RS A function). From the security point of 

view, it is desirable that all reproduction apparatus be equipped with a public few minutes to process the public key. This 

means that the user has to wait a few minutes before an image is reproduced from a DVD. This poses a problem in employing 
the public key cipher system in consumer product. Since, at the present level, public key cipher cannot be processed by the 

CPU used in consumer products, for the present for consumer reproduction apparatus because it requires a small amount 

of processing time. However, in the case of secret key cipher, since the secret encryption key can be easily deciphered from 
cipher decoder information, the secret key cipher will lose its anti-piracy effect once deciphered. Therefore, transferring to 
public key cipher which is difficult to decipher is imperative in the future later with reference to Figure 29. First, when 
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reproducing the optical disk of Figure 39 on a first-generation reproduction apparatus equipped with a secret key cipher 
decoder 881, the first physical feature information (corresponding to the encrypted version of the position information) 
unique to the legitimate disk is read from the secret key cipher recording portion 879 on the disk, and decrypted by the secret 
key cipher decoder 881 into plaintext. Further, the second physical feature information (corresponding to the measured 
position information) of the disk is measured, and the two kinds of physical information are compared. In the case of a... 
...pirate, as earlier described, the pirate can produce illegal disks in large quantities by illegally creating the secret key cipher. 
In that case, since the secret key decoder 881 in the first-generation reproduction apparatus checks only the secret key 
cipher, the comparison checks OK as shown in step 878d, allowing the illegal pirated disk to be reproduced. However, by 

that time in the future, second-generation reproduction apparatus on the second-generation reproduction apparatus, as 

shown in step 878b. On the other hand, when a pirated disk is inserted for reproduction, the reproduction apparatus checks 
only the public key cipher, as shown in step 878e, whether the secret key cipher is deciphered or not. As a result, the anti- 
piracy function of the public piracy prevention method at the master disk level that uses the physical feature information 

of the master disk as shown in Figure 13. The above-illustrated example has the feature that, when performing encryption, 
the same information is encrypted by using a public key encryption function and a secret key encryption function separately, 
and the respectively encrypted versions of the information are recorded on the disk. Accordingly, when a transition is made 

in future from the current player equipped with a decoder, based on an 8 can be used effectively on either type of player. 

(B) Other mechanisms will be described, (a) We will describe another specific example of the public key/secret key 
combination type in which the software feature information, ID number, and marking position information. are encrypted 

(see Figure 29). The ID number refers to the number assigned to each disk for identifying the sub secret key, while in the 

present example, encryption is performed only with master secret key without using a key corresponding to the sub secret 
key. More specifically, as shown in Figure 29, the above combined signal is encoded in a secret key encryption section 832 
by using a secret key 834 for secret key encryption. The same combined signal is also encoded in a public key encryption 
section 831 by using a secret key 833 for public key encryption. In this way, public key cipher is used in conjunction with 

secret 546 has already been described with reference to Figure 14, and therefore, explanation will not be repeated here. In 

the encryption section 830, the combined signal of the physical feature information is encoded in the public key encryption 
section 831, such as RSA, by using the secret key 833 for public key encryption. The above public key cipher and the secret 

key to provide error correction of errors in the barcode recorded data of the invention against a disk scratch that may be 

caused in the worst condition in consumer use. The principle of the pulse width modulation method will be described with 
reference to the same figure. This-method eliminates the need for the first ciphertext by the master secret key and the second 
ciphertext by the sub secret key. In this method, the software feature information, the position information, and the ID 
number are combined together for encryption. Billions of ROM disks are produced annually. Therefore, there is a possibility 

that a disk that tertiary-record by the HMST method. As shown in Figure 35, in process (2), the software maker may 

produce a disk 844b on which the ID number unique to the disk and a private key used for secr et communication with a 

user are recorded. The disk 844c, 844d can be reproduced without requiring video signal or the like is recorded on a disk 

844e. A brief operational description of MPEG scrambling will be given below. An MPEG compressed video signal is split 
between a variable-length encoder for AC components and a fixed-length encoder, eaeli containing a random number adder, 
for scrambling. In the present invention, a descrambling signal is encrypted by an encryption encoder using a one-direction 
function. Further, a portion of a compression program in an image compression controller is compressed by the encryption 
encoder. This makes it difficult for a replicating company to exchange the encryption encoder with an illegal one. 

Accordingly, only legitimate disks are decrypted with sub That is, in process (4) of Figure 35, using a master secret key 

the software company encrypts the disk ID number and a sub public key for decoding the descrambling signal, and 
secondary-records the encrypted text by barcode on the disk, thus completing the disk 844f. Since the disk 844f are 
scrambled, the disk cannot... 
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signature scheme. In this paper, we investigate a condition to avoid the forgeries directly. We also show some new message 
recovery signatures strong against the forgeries by adding a negligible computation amount to their signatures, while not 
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Abstract: A true trapdoor digital signature scheme is presented. The scheme uses linear error-correcting block codes in a 
manner similar to that of the McEliece public-key cryptosystem, the Rao-Nam private -key cryptosystem, and the three digital 
signature schemes proposed by Xinmei (1990), Harn and Wang (1992), and the authors. All these digital signature schemes 
have been shown to be susceptible to a number of attacks. The signature scheme described in this paper derives its security 
from the complexity of three problems: the decoding of general linear error-correcting block codes, the factoring of large 
matrices, and the derivation of a matrix from its right inverse. It is shown that the proposed scheme is resistant to the attacks 
that proved successful when used against the aforementioned digital signature schemes as well as other attacks. The required 
public key storage is about 3n 2 bits. The complexity of the signature generation and validation algorithms are 0(n 2 ) and 
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Abstract: Public-key algebraic encryption (PUAE) has certain advantages that make it attractive in some applications. 
Variants of PI J AI ! for private-key algebraic encryption (PRAE); have been proposed subsequently. PRAI i is proven to be 
insecure under chosen plaintext attack. In the paper, some invariants of PRAE are studied, and a private-key cryptosystem 
based on concatenation of codes is proposed and analysed. The new system is, composed of short-length codes and is 
designed to avoid the weaknesses in other PRAE systems. The system looks secure against known attacks. Some methods to 
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Abstract: Three methods for strengthening public key cryptosystems in such a way that they become secure against 
adaptively chosen ciphertext attacks are presented. In an adaptively chosen ciphertext attack, an attacker can query the 
deciphering algorithm with any ciphertext except for the exact object ciphertext to be cryptanalyzed. The first strengthening 
method is based on the use of one-way hash functions, the second on the use of universal hash functions, and the third on the 
use of digital signature schemes. Each method is illustrated by an example of a public key cryptosystem based on the 
intractability of computing discrete logarithms in finite fields. Security of the three example cryptosystems is formally 
proved. Two other issues, namely, applications of the methods to public key cryptosystems based on other intractable 
problems and enhancement of information authentication capability to the cryptosystems, are also discussed ( 28 refs.) 
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Abstract: Outlines the various areas of computer network vulnerability and the smart card techniques used to make the 
system secure. This includes personal authentication and data validation using private or public key schemes. A DES based 
system is described together with a review of the advantages and disadvantages. The weaknesses of such a private key system 
are highlighted and the more secure public key RS A system is explained. The disadvantages of implementation into a smart 
card are mentioned, and why the search for an implementable public key system is a high priority. Present development effort 
shows that the Fiat-Shamir technique can fit the bill. It is implementable for an 8-bit smart card processor and takes 5-10% of 
the time of the RSA algorithm. The technique is described and the mathematical reasons why it is faster, and as secure, as 
RSA pointed out. Application examples are given together with FW project experience to date. The resulting solution shows 
that smart cards can provide a very high level of computer system protection. Password hacking can be radically reduced by 
the Fiat-Shamir smart card solution together with line tapping, line diversion and unauthorised program modification. It can 
also prove that a user is who he says he is without knowing the process that generates the initial challenge. This is a 
substantial step forward in providing a means to legally resolve any dispute of authentication be it personal or data, with a 
smart card ( 1 refs.) 
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In this thesis we consider the provability of the security of cryptographic algorithms— that is, proving that a particular 
cryptographic algorithm is immune to cryptanalytic attacks. To this end, we formalise cryplanalylic attacks and the criteria 
for "breaking" the cryptographic algorithm. This formal model is used to show that if an algorithm exists that determines if an 
efficient attack against the cryptographic algorithm exists, then a feasible universal cryplanalylic attack exists. However, we 
demonstrate that a feasible universal cryptanalytic attack does not exist; and thus, conclude that there is no algorithm that 
determines the immunity of cryptographic algorithms to attacks. 

Our consideration turns to other methods of demonstrating the security of cryptographic algorithms: we consider families 
of cryptographic algorithms indexed by block size: these are known as cryptosystems. Algorithms derived from 
pseudorandom cryptosystems have strong cryptographic properties, in particular, resilience against attack. We find some 
sufficient conditions for pseudorandom cryptosystems and conclude that they are infeasible. We then determine a necessary 
condition for pseudorandom cryptosystems: that the keyspaces $\{ K\sb{n}\}\sb{n\varepsilon\rm N}$ must grow as $\vert 
K\sb{n}\vert \ \geq\ \xi (n)2\sp{n}$ for a superpolynomial function $\xi$. We analyse public-key cryptosystems and 
conclude that proving pseudorandomness for feasible cryptosystem requires complexity assumptions. 

We consider the design of cryptographic algorithms that are apparently strong but are vulnerable to a specific, secret 
attack. These algorithms are used as a model for an analysis to demonstrate that cryptographic design criteria are necessary 
but not sufficient conditions; we also use the model to determine how to secure the cryptographic algorithm against the 
secret attack. 
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Abstract: Discusses the problem of multiplexing several variable rate encoded streams into a single stream. Moreover, in 
order to facilitate editing of the resulting stream it is required that data generated during the same time interval is multiplexed 
together. Particular emphasis is placed on controlling encoder rates and combining data in such a way as to avoid overflow 
and underflow of buffers at encoder and decoder. Applications include satellite or cable transmission of a fixed number of 
different video channels, multimedia presentations with multiple video streams, and video on demand ( 6 refs.) 
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Document Type: Feature Article ISSN: 1350-2425 Language: English Record Status: New record 

Abstract: Public-key algebraic encryption (PUAE) has certain advantages that make it attractive in some applications. 
Variants of PUAE for private-key algebraic encryption (PRAE) have been proposed subsequently. PRAE is proven to be 
insecure under chosen plaintext attack. In the paper, some invariants of PRAE are studied, and a private-key cryptosystem 
based on concatenation of codes is proposed and analysed. The new system is composed of short-length codes and is 
designed to avoid the weaknesses in other PRAE systems. The system looks secure against known attacks. Some methods to 
improve the system information rate and security are also suggested. Reprinted by permission of the publisher. 

Descriptors: Public key cryptosystems; Concatenated codes; Information rates ; 
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Title: Research directions for automated software verification: using trusted hardware 
Author(s): Devanbu, P.; Stubblebine, S. 
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Author Affiliation: Inf. Syst. & Services Res. Center, AT&T Labs.-Res., Florham, NJ, USA 

Book Title: Proceedings. 12th IEEE International Conference Automated Software Engineering (Cat. No.97TB 100200) 

Inclusive Page Numbers: 274-9 

Publisher: IEEE Comput. Soc, Los Alamitos, CA 

Country of Publication: USA 

Publication Date: 1997 

Conference Title: Proceedings 12th IEEE International Conference Automated Software Engineering 

Conference Date: 1-5 Nov. 1997 

Conference Location: Incline Village, NV, USA 

Conference Sponsor: IEEE Comput. Soc. NASA Ames Res. Center AAAI ACM SIGART ACM SIGSOFT Microsoft 
ISBN: 0 8186 7961 1 

U.S. Copyright Clearance Center Code: 0 8186 7961 l/97/$10.00 
Item Identifier (DOI) UU «, Sj v : 2848 
Number of Pages: xix+321 
Language: English 

Document Type: Conference Paper (PA) 
Treatment: Practical (P) 

Abstract: Service providers hosting software on servers at the request of content providers need assurance that the hosted 
software has no undesirable properties. This problem applies to browsers which host applets, networked software which can 
host software agents, etc. The hosted software's properties are currently verified by testing and/or verification processes by 
the hosting computer. This increases cost, causes delay, and leads to difficulties in version control. By furnishing content 
providers with a physically secure computing device with an embedded certified private key, such properties can be verified 
and/or enforced by the secure computing device at the content provider's site; the secure device can verify such properties, 
statically whenever possible, and by inserting checks into the executable binary when necessary. The resulting binary is 
attested by a trusted signature, and can be hosted with confidence. The position paper is a preliminary report that outlines 
scientific and engineering goals in this project ( 15 refs.) 
Subflle(s): C (Computing & Control Engineering) 

Descriptors: computer networks; configuration management; program testing; program verification; security of data 
Identifiers: automated software verification; trusted hardware; service providers; servers; content providers; hosted 
software; browsers; applets; networked software; software agents; testing; hosting computer; version control; physically 
secure computing device; embedded certified private key; checks; executable binary; trusted signature; scientific goals; 
engineering goals 

Classification Codes: C61 10F (Formal methods); C6150G (Diagnostic, testing, debugging and evaluating systems); C61 15 
(Programming support); C6130S (Data security); C6I50N (Distributed systems software) 
INSPEC Update Issue: 1997-049 
Copyright: 1997, IEE 
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05923243 

Title: The first experimental cryptanalysis of the Data Encryption Standard 
Author(s): Matsui, M. 

Author Affiliation: Lab. of Comput. & Inf. Syst., Mitsubishi Electr. Corp., Kanagawa, Japan 

Book Title: Advances in Cryptology - CRYPTO '94. 14th Annual International Cryptology Conference. Proceedings 
Inclusive Page Numbers: 1-11 
Publisher: Springer-Verlag, Berlin 
Country of Publication: Germany 
Publication Date: 1994 

Conference Title: Advances in Cryptology - CRYPTO '94. 14th International Cryptology Conference Proceedings 
Conference Date: 21-25 Aug. 1994 
Conference Location: Santa Barbara, CA, USA 

Conference Sponsor: Int. Assoc. Cryptologic Res. IEEE Comput. Soc. Tech. Committe on Security & Privacy 
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Editor(s): Desmedt, Y.G. 
ISBN: 3 540 58333 5 
Number of Pages: vi+438 
Language: English 

Document Type: Conference Paper (PA) 
Treatment: Experimental (X) 

Abstract: Describes an improved version of linear cryptanalysis and its application to the first successful computer 
experiment in breaking the full 16-round DES. The scenario is a known-plaintext attack based on two new linear approximate 
equations, each of which provides candidates for 13 secret key bits with negligible memory. Moreover, reliability of the key 
candidates is taken into consideration, which increases the success rate. As a result, the full 16-round DES is breakable with a 
high probability of success if 2 4j random plaintexts and their ciphertexts are available. The author carried out the first 
experimental attack using 12 computers to confirm this: he finally reached all of the 56 secret key bits in 50 days, out of 
which 40 were spent for generating plaintexts and their ciphertexts and only 10 days were spent for the actual key search ( 
7refs.) 

Subfile(s): B (Electrical & I Electronic 1 Engineering); (' (Computing & Control Engineering) 
Descriptors: cryptography; equations; mathematics computing; reliability; telecommunication computing 
Identifiers: linear cryptanalysis; Data Encryption Standard; 16-round DES; known-plaintext attack; linear approximate 
equations; secret key bits; negligible memory; key candidate reliability; success rate; random plaintexts; ciphertexts; key 
search 

Classification Codes: B6120B (Codes); C6130S (Data security); C7310 (Mathematics computing); C7410F 
(Communications computing) 
INSPEC Update Issue: 1995-014 
Copyright: 1995, IEE 
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05329813 

Title: Lyndon trees 

Author(s): Subramanian, K.G.; Siromoney, R.; Mathew, L. 
Author Affiliation: Dept. of Math., Madras Christian Coll., India 
Journal: Theoretical Computer Science , vol.106 , no.2 , pp.373-83 
Country of Publication: Netherlands 
Publication Date: 14 Dec. 1992 
ISSN: 0304-3975 
CODEN: TCSCDI 

U.S. Copyright Clearance Center Code: 0304-3975/92/$05.00 

Language: English 

Document Type: Journal Paper (JP) 

Treatment: Theoretical or Mathematical (T) 

Abstract: Lyndon trees are introduced as a generalization of Lyndon words, and the basic properties studied. A 
correspondence between the sets of Lyndon words and Lyndon trees is established. A unique factorization theorem for 
factoring a tree in terms of Lyndon trees is proved. As an application of this result, a public key cryptosystem for trees is 
constructed, for which encryption and decryption are easy but cryptanalysis is hard ( 11 refs.) 
Subfde(s): C (Computing & Control Engineering) 
Descriptors: public key cryptography; trees (mathematics) 

Identifiers: Lyndon trees; Lyndon words; factorization theorem; public key cryptosystem; encryption; decryption; 
cryptanalysis 

Classification Codes: C6130S (Data security); CI 160 (Combinatorial mathematics) 
INSPEC Update Issue: 1993-003 
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Copyright: 1993, IEE 



20/5/5 (Item 4 from file: 2) 

DIALOG(R)File 2: INSPEC 

(c) 2009 The IET. All rights reserved. 



04280402 

Title: Cryptographic programs 

Author(s): Ruhland, J. 

Journal: Chip , no.9 , pp.94-8 

Country of Publication: West Germany 

Publication Date: Sept. 1988 

ISSN: 0170-6632 

CODEN: CHIPDP 

Language: German 

Document Type: Journal Paper (IP) 

Treatment: Practical (P) 

Abstract: The author loosely surveys the theory and practice of various modern cryptographic methods. He mentions such 
topics as RSA code, public key systems, time locked codes and error checks, and gives a short introductory description to the 
mProtect and Protect programs. He also names three cryptographic programs available to the public-i.e. PC Crypt, The 
Confidant and Encode/Decode-and four Pascal programs for performing given encrypting tasks ( 0 refs.) 
Subfile(s): B (Electrical & 1 Electronic Engineering); C (Computing & Control Engineering) 
Descriptors: codes; cryptography; Pascal listings 

Identifiers: cryptographic methods; RS A code; public key systems; time locked codes; error checks; mProtect; Protect 
programs; cryptographic programs; PC Crypt; The Confidant; Encode/Decode; Pascal programs; encrypting tasks 
Classification Codes: B6120B (Codes); C6130 (Data handling techniques) 
INSPEC Update Issue: 1989-003 
Copyright: 1989, IEE 
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03801927 

Title: Group parity check system for important information 
Author(s): Tanaka, H.; Momohara, T.; Kaneku, S. 
Author Affiliation: Fac. of Eng., Kobe Univ., Japan 

Journal: Electronics and Communications in Japan, Part 1 (Communications) , vol.68 , no.2 , pp.35-9 
Country of Publication: USA 
Publication Date: Feb. 1985 
ISSN: 8756-6621 
CODEN: ECJCED 

U.S. Copyright Clearance Center Code: 8756-6621/85/0002-0035$7.50/0 

Language: English 

Document Type: Journal Paper (JP) 

Treatment: Theoretical or Mathematical (T) 

Abstract: Can we prevent human deception or computer crime by cryptography? The main functions of cryptography are 
"secrecy' and "authentification', and they are certainly effective for those outside a computer system. However, for the 
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professional insiders who want to attempt deception, no cryptosystem will work well even if the information is protected by 
advanced cryptography because of the dependence on human conscience. Therefore, based on the concept that only humans 
can check human deception, the authors propose a new scheme of data security, the "group parity check system for important 
information'. This scheme checks human deception arising in information input by mutual surveillance among people related 
to the information system. Furthermore, they show how to realize this scheme using the public key cryptosystem, and on a 
microcomputer. Although this scheme is inefficient because it requires duplex input of information, it will be effective if 
applied to only important information ( 7 refs.) 
Subfile(s): B (Electrical & Electronic Engineering) 
Descriptors: cryptography 

Identifiers: computer crime; cryptography; group parity check; human deception; mutual surveillance; public key 
cryptosystem 

Classification Codes: B6120B (Codes) 
INSPEC Update Issue: 1987-004 
Copyright: 1987, IEE 
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03252254 

Title: Authentication and digital signature 
Author(s): Koyama, K. 

Author Affiliation: Musashino I Electrical Communication Lab., NTT, Tokyo, Japan 

Journal: Information Processing Society of Japan , vol.24 , no.7 , pp.853-61 

Country of Publication: Japan 

Publication Date: 1983 

ISSN: 0447-8053 

CODEN: JOSHA4 

Language: Japanese 

Document Type: Journal Paper (JP) 

Treatment: Practical (P) 

Abstract: Computer security management has become paramount with the spread of electronic mail, office automation and 
other computer-integrated communication systems. It has become indispensable to automatically confirm the truth of 
information and the individual. This paper summarizes digital signature schemes for computer communication networks and 
discusses (1) identification and verification techniques for certifying the individual, (2) the application of digital signatures 
based on public-key cryptosystems, and (3) protocols for digital signatures ( 28 refs.) 
Subfile(s): C (Computing & Control Engineering) 
Descriptors: security of data 

Identifiers: security of data; authentication; digital signature; electronic mail; office automation; computer-integrated 

communication systems; identification; verification techniques; public-key cryptosystems; protocols 

Classification Codes: C0230 (Economic, social and political aspects of computing); C6130 ( Data handling techniques) 

INSPEC Update Issue: 1984-006 

Copyright: 1984, IEE 
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File 610 :Business Wire 1999-2009/Jul 13 

(c) 2009 Business Wire. 
File 810:Business Wire 1986-1999/Feb 28 

(c) 1999 Business Wire 
File 613:PR Newswire 1999-2009/Jul 13 

(c) 2009 PR Newswire Association Inc 
File 813:PR Newswire 1987-1999/Apr 30 

(c) 1999 PR Newswire Association Inc 
File 634:San Jose Mercury Jun 1985-2009/Jul 10 

(c) 2009 San Jose Mercury News 
File 624:McGraw-Hill Publications 1985-2009/Jul 13 

(c) 2009 McGraw-Hill Co. Inc 



Set Items Description 

51 3532 (CONFIRM??? OR CONFIRMATION OR ACKNOWLEDG? ? ? OR ACKNOWLEDGEMENT OR 
AFFIRM??? OR ATTEST??? OR CERTIFY??? OR CHECK??? OR SUBSTANTIAT? ? ? OR VERIFY??? OR 
PROVE? ? OR PROVING OR VAL I DAT ? ? ? OR AUTHENTICITY) (10N) ((PUBLIC OR PRIVATE OR 
SYSTEM OR SECRET OR SYMMETRIC OR SYNCHRONOUS OR CONTENT OR ASSESS OR DECRYPTION OR 
ASYMMETRIC OR SYMMETRIC) ( ) KEY? ? OR PKI OR PGP OR WEB () TRUST) 

52 437 SI (5N) (PLAYER OR PLAYERS OR RECORDER OR RECORDERS OR PLAYBACK OR 
DEVICE OR DEVICES OR VCR OR VCRS OR DVDR OR DVDRS OR APPARATUS OR DVR OR 
DIGITAL ((VIDEO ((RECORDER? ? OR PC OR PCS OR COMPUTER? ? OR DESKTOP? ? OR 
WORKSTATION? ? OR PROGRAM? ? OR APPLICATION? ? OR MODULE? ?) 

53 658269 (USAGE OR USE) (3N) (CONDITION? ? OR TERMS OR RULE? ? OR 
RESTRICTION? ? OR RIGHTS OR LIMITATION? ?) OR (LIMIT??? OR RESTRICT??? OR SPECIFI?? 
OR PERMITTED OR FIXED OR DEFINED OR STIPULATED OR PREDEFINED OR PRESET OR 
PREESTABLISHED OR PREDETERMINED) (3N) (NUMBER OR TIMES OR COPIED OR COPIES OR 
PLAYED OR DOWNLOAD??) OR AVAILABILITY () DATES OR USAGE () PERIODS 

54 65430 (CRYPTOGRA? OR (ELECTRONIC OR DIGITAL )()( SEAL? ? OR SIGNATURE? ? OR 
CERTIFICAT? ? ? OR ENVELOPE? ?) OR ENCRYPT??? OR CIPHER? ? OR CYPHER? ? OR HASH?? OR 
ENCOD??? OR ENC7PHER? ? ) (10N) (CONTENT OR IMAGE OR IMAGES OR PICTURE OR PICTURES OR 
ART OR ARTWORK? ? OR GRAPHIC OR GRAPHICS OR ILLUSTRAT? OR PHOTO OR PHOTOS OR 
PHOTOGRAPH OR PHOTOGRAPHS OR PHOTOGRAPHY OR MOVIE? ? OR FILM? ? OR VIDEO OR VIDEOS 
OR ALBUM OR ALBUMS OR TRACK OR TRACKS OR MP 3 OR MP 3 MP ( ) 3 OR (MPEG()1 OR 

MPEG1) ()AUDIO()LAYER()3 OR GAME OR GAMES CD OR CDS OR COMPACT ( ) (DISK? ? OR DISC? ?) 
OR DVD OR DVDS OR MUSIC OR SONG OR SONGS OR AUDIOVISUAL) 

55 605154 (UNENCOD??? OR UNCOD??? OR UNENCRYPT??? OR DECRYPT??? OR DECOD??? 
OR DEC?PHER? ? ? OR KEY OR KEYS) (10N) (MESSAGE? ? OR SIGNAL? ? OR PACKET? ? OR 
TRANSMISSION? ? OR BLOCK? ? OR INFORMATION OR DATA) 

56 588285 (CONTENT OR IMAGE OR IMAGES OR PICTURE OR PICTURES OR ART OR 
ARTWORK? ? OR GRAPHIC OR GRAPHICS OR ILLUSTRAT? OR PHOTO OR PHOTOS OR PHOTOGRAPH OR 
PHOTOGRAPHS OR PHOTOGRAPHY OR MOVIE? ? OR FILM? ? OR VIDEO OR VIDEOS OR ALBUM OR 
ALBUMS OR TRACK OR TRACKS OR MP 3 OR MP 3 MP ( ) 3 OR (MPEG ( ) 1 OR 

MPEG1) ()AUDIO()LAYER()3 OR GAME OR GAMES CD OR CDS OR COMPACT ( ) (DISK? ? OR DISC? ?) 
OR AUDIOVISUAL OR DVD OR DVDS OR MUSIC OR SONG OR SONGS OR PRODUCT OR UNIQUE OR 
SECURITY) (5N) (ID OR IDS OR IDENTIFICATION OR NUMBER? ? OR IDENTIFIER? ?) 



57 0 AU= (MAARI , K? OR MAARI K? OR MAARI (IN) (K OR KOICHI)) 

58 1 S2 (S) S3 

59 6 SI (S) S3 

S10 4 RD (unique items) 
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511 43 SI (S) S4 

512 22 Sll (S) (S5 OR S6) 

513 20 RD (unique items) 

514 20 S13 NOT (58 OR S10) 
Sib 4 S14 NOT PY>1998 

516 11 52 NOT PY>1997 

517 11 516 NOT (58 OR 510 OR 51b) 

518 11 RD (unique items) 



15/3,K/1 (Item 1 from file: 15) 

DIALOG(R)File 15: ABI/Inform(R) 

(c) 2009 ProQuest Info&Learning. All rights reserved. 

01119888 97-69282 
The Internet and EDI 

Muiznieks, Vik 

Telecommunications (Americas Edition) v29nl 1 pp: 45-48 
Nov 1995 

ISSN: 0278-4831 Journal Code: TEC 

Word Count: 1387 

Text: 

...enhanced mail (PEM) and pretty good privacy (PGP). PEM capabilities are 
described in RFCs 1421 to 1424, and provide for the confidentiality of messes via 
encryption, originator authentication, content integrity via message integrity 
check (MIC) algorithms, and non-repudiation if a public key mechanism is used. PGP, 
a privately developed public/private key system, provides mechanisms for encryption 
and authentication. 

For EDI-based security, many companies deploy firewalls... 



15/3,K/2 (Item 2 from file: 15) 

DIALOG(R)File 15: ABI/Inform(R) 

(c) 2009 ProQuest Info&Learning. All rights reserved. 

00957574 96-06967 

Cisco builds security into router software 

Messmer, Ellen 

Network World v 1 1 n5 1 pp: 1 7, 20 
Dec 19, 1994 

ISSN: 0887-7661 Journal Code: NWW 

Word Count: 436 

Text: 

...secure but adds overhead," Howard noted. 

Public-key technology is based on a dual-key system that matches a secret key with 
a publicly known key in order to encrypt and decrypt data. With public key, the 
sender's identity and message content can be checked through the "hash" and digital 
signature. 
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This technique will be supported transparently in Cisco router networks. 

The particular algorithm Cisco routers will use is based on the federal 
government's Digital... 



15/3,K/3 (Item 3 from file: 15) 

DIALOG(R)File 15: ABI/Inform(R) 

(c) 2009 ProQuest Info&Learning. All rights reserved. 

00908564 95-57956 

Digital signatures: Signing and notarizing electronic forms 

Theofanos, Mary F; Phillips, John T 

Records Management Quarterly v28n2 pp: 18-22+ 

Aprl994 

ISSN: 1050-2343 Journal Code: RMQ 

Word Count: 3587 

Text: 

. . .draft standards concerning the admissibility of electronic records as 
evidence in court. The National Institute of Science and Technology (NIST) 
is working to develop a public key encryption standard and 
message digest algorithm for use on certifying the 

authenticity of messages. The Department of the Treasury already has a 
system acceptable to the General Accounting Office which replaces written 
signatures on disbursements by using the "Data Encryption Standard (DES) to 
calculate a message digest based on a binary key." Much of 
the information for this paper comes from Data Systems 
Research and Development Program efforts performed by Martin Marietta 
Energy Systems to develop the Prototype Electronic Records Management 
System (PERMS) for the U.S... 

...technical issues for use of digital signatures as an additional 
subsystem of an overall Electronic Document Management System. The goal of 
the research was to illustrate the viability of digital 
signatures as an additional technology to existing automated records 
management systems and show that such a technology can provide acceptable 
authentication and validation similar to a. . . 
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DIALOG(R)File 813: PRNewswire 

(c) 1999 PR Newswire Association Inc. All rights reserved. 
0900048 ATTU016 

SCIENTIFIC-ATLANTA LICENSES CYLINK'S SECURITY TECHNIQUES FOR DIGITAL BROADBAND 
APPLICATIONS 



Date: January 9, 1996 12:49 EST Word Count: 513 
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Correction: 

...encrypted and exchanged. The identity of 

the sender and the message content can be authenticated — an 
important capability for multi-provider authorization environments and 
for validation of orders from subscribers. 

A public key-based cryptography system controls the encryption 
and decryption of messages. Each user is assigned two unique 
mathematically-related keys: a published public key, and a secret 
private key. In a cable TV environment, the public key for each 
subscriber's set-top terminal can... 



18/3, K/l (Item 1 from file: 15) 
DIALOG (R) File 15: 
ABI/Inform(R) 

(c) 2009 ProQuest Inf o&Learning . All rights 
reserved . 

01561463 02-12452 
Legal reporter 



Anderson, Teresa 

Security Management 
v41nl2 pp: 127-128+ 

Dec 1997 

ISSN: 0145-9406 Journal 

Code: SEM 

Word Count: 19 73 

Text : 

. . .via the key certification system use a key escrow system that allows law 

enforcement to intercept and decode encrypted communications. Under a key 

certification arrangement, computer users obtain public 

key certificates from some designated authority. The certificates 

verify their identity, thus assuring all users of public/private 

encryption keys that the private keyholders are who they claim to be. Key 

certification is widely... 
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01500172 01-51160 
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Internet security: Being wired has its price 



Anonymous 

Computer Reseller News 
n753 pp: 134-136+ 

Sep 8, 1997 

ISSN: 0893-8377 Journal 

Code: CRN 

Word Count: 2 652 

Text : 

...the signature is authentic and recover the message in a provably 
unmodified form. Signature verification is accomplished using an attached 
certificate . 

A certificate is a computer-based record that attests to the 
binding of a public key to an identified subscriber and is 

issued under a specified policy. More correctly, a certificate is evidence 
of prior authentication, where authentication here means some... 



18/3, K/3 (Item 3 from file: 15) 
DIALOG (R) File 15: 
ABI/Inform(R) 

(c) 2009 ProQuest Inf o&Learning . All rights 
reserved . 

01397342 00-48329 
Smart Card advancements 



Anonymous 

Security 
v34n3 pp: 16 

Mar 1997 

ISSN: 0890-8826 Journal 
Code: SRT 

Abstract : 

. . .magnetic stripe technology. According to Kobus Marneweck, the big 
success story with smart cards so far has been phone cards. Another area 
smart cards are proving useful is for Internet access using 
public key encryption. In certain applications, such 

as transit cards, non-contact smart cards are where things are headed, says 
Marneweck . 
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18/3, K/4 (Item 4 from file: 15) 
DIALOG (R) File 15: 
ABI/Inform(R) 

(c) 2009 ProQuest Inf o&Learning . All rights 
reserved . 

01148649 97-98043 
Digital IDs to help secure Internet 



Wingfield, Nick 

Inf oWorld 
vl7n43 pp: 12 

Oct 23, 1995 

ISSN: 0199-6649 Journal 

Code: IFW 

Word Count: 414 

Text : 

. . .to improve Internet security by issuing digital certificates will begin 
next summer, when the United States Postal Service enters market testing as 
a digital-certificate certifying authority (CA) . 

Digital certificates are unique programs based on public- 
key cryptography that verify the identity of parties on 

networks such as the Internet. Certifying authorities act as trusted third 
parties that issue digital certificates to both end-users... 
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(c) 2009 ProQuest Inf o&Learning . All rights 
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01061996 97-11390 

PGP and PEM eliminate the email postcard problem 



Trowbridge, Dave 

Computer Technology Review 
vl5n6 pp: 6-12 
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Jun 1995 

ISSN: 0278-9647 Journal 

Code: CTN 

Word Count: 1781 

Text : 

...and authentication are assured (assuming no one has intercepted and 
purposefully tampered with it) . A signed message looks like gibberish, but 
can be read without PGP using a program that translates 
Radix-64 It cannot be validated or authenticated without PGP. 

A signed, encrypted message cannot be read, validated, or 
authenticated without PGP. An unsigned, encrypted message cannot be 
read without PGP, but it cannot be validated or authenticated by any 
means — there is no assurance the message... 



18/3, K/6 (Item 6 from file: 15) 
DIALOG (R) File 15: 
ABI/Inform(R) 

(c) 2009 ProQuest Inf o&Learning . All rights 
reserved . 

00759575 94-08967 

A public key extension to the Common Cryptographic Architecture 



Le, An V; Matyas, Stephen M; Johnson, 
Donald B; Wilkins, John D 
IBM Systems Journal 

v32n3 pp: 
461-485 
1993 
ISSN: 

0018-8670 Journal Code: ISY 
Word Count : 
16326 
Text : 

. . . services . 

The application signature generate service generates an application digital 
signature on the hash value of user-supplied data, using a private 
certification key, a private key-management key, or a private 
user key. 

The application signature verify service verifies an 

application digital signature on the hash value of user-supplied 

data, using a public certification key, a public key-management key, or a 

public user key. . . 
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18/3, K/8 (Item 1 from file: 810) 
DIALOG (R) File 810: 
Business Wire 

(c) 1999 Business Wire . All rights reserved. 

0558684 
BW1029 

NCD SOFTWARE : 

NCD Software Unveils New Integrated Security Solution for Z-Mail 
for Windows, Optimizing Internet Mail Protection; New ViaCrypt PGP Solution, 
Customized for Z-Mail, Brings Users Special Encryption, Decryption and Digital 
Signature Capabilities 

February 20, 1996 



Byline: Business Editors & Computer 
Writers 

...attachments are 

secured through public-key cryptography; only the person with the 
corresponding private key can unlock the encrypted file. 

Digital signatures, another valuable security application 
provided by ViaCrypt PGP, allow Z-Mail users to verify 
that the 

message they received was sent by a specific person and that the 
message was not altered. 

"Security has become our customers' primary consideration... 



18/3, K/9 (Item 2 from file: 810) 
DIALOG (R) File 810: 
Business Wire 

(c) 1999 Business Wire . All rights reserved. 

0486998 
BW1322 

CDN CREW ENERGY CORP : 

CANADIAN CREW ENERGY - COMPLETION OF INITIAL GEOTHERMAL WELL 
ANTICIPATED BY EARLY JUNE - PROJECT REVIEW 

May 

15, 1995 

Byline: Business Editors 

...about 1300 metres then angled towards Meager Mountain to two 
target zones, at depths of about 2400 metres and about 3450 metres. 

The exploration drilling program has been designed to 
confirm 

assumptions that Pacific GeoPower (PGP) (a joint venture between 
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Canadian Crew Energy Corp. and Guy F. Atkinson Holdings) has made 
about the temperature, flow rates, geological structure, and other 
aspects . . . 



18/3, K/10 (Item 3 from file: 810) 
DIALOG (R) File 810: 
Business Wire 

(c) 1999 Business Wire . All rights reserved. 

0476511 
BW1052 

COMMERCENET : 

CommerceNet Launches Comprehensive Certification Model For 

Commercial Use On The Internet Certification Authority Pilot Provides Critical 
Stage in Assuring Secure Internet Electronic Commerce 



April 10, 1995 
Byline : 

Business Editors/Computer Writers 

. . .technology to certify secure web servers and 

CommerceNet-af filiated individuals engaged in electronic commerce 
pilots over the Internet. By positively identifying buyers and 
sellers through public key certificates and other 
proven security 

technology, the program will provide a major step in providing the 
assurance needed for the Internet to be used for commercial 
transactions . 

"This trial is a major step. . . 



18/3, K/ll (Item 1 from file: 634) 
DIALOG (R) File 634: San 
Jose Mercury 

(c) 2009 San Jose Mercury News. All rights 
reserved. 



07642177 



GOVERNMENT, FIRMS FIND WAY TO 
VERIFY ELECTRONIC SIGNATURES 



San Jose Mercury 

News ( SJ ) - Saturday, May 21, 1994 
By: 

Associated Press 
Edition: Morning Final 

Section: Business Page: 13D 
Word Count: 
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234 

. . .retrieved by the agency, a 320-bit number, which is the electronic 

signature, will appear on the document. The government employee will then 

run a computer program to verify the signature against 

the person's public key. The key could be stored in a secure 

government data base, Smid said. 
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11/3,K/1 (Item 1 from file: 275) 

DIALOG(R)File 275: Gale Group Computer DB(TM) 

(c) 2009 Gale/Cengage. All rights reserved. 

02097007 Supplier Number: 19656448 (Use Format 7 Or 9 For FULL TEXT ) 

Time to spend electronic money, (e-commerce issues for businesses) (Internet/Web/Online Service Information) 

Kessler, Gary; Sheppard, Steve 
Network VAR , v5 , n8 , p65(8) 
August , 1997 
ISSN: 1082-8818 

Language: English Record Type: Fulltext; Abstract 
Word Count: 5 177 Line Count: 00468 
...and unique identifier 

Validity (or operational) period 
Subject's name and unique identifier 
Subject's public key information 
Standard extensions 

Certificate appropriate U# definition 
Key usage limitation definition 
Certificate policy information 
Other extensions 

Application-specific 

Certificate authority (CA) -specif ic 
A certificate authority (CA) , then, is any agency that issues 
certificates. A company... 

...begs for a formal definition. While electronic commerce, and commerce 
over the Internet in particular, is a motivating factor for PKI and CA 
work, the applications for PKI are much broader. PKI 

applications include secure electronic mail, payments and electronic 
checks, electronic data interchange (EDI), secure transfer of domain 
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name service (DNS) and routing information, electronic forms, and digitally 
signed documents. 

While a single global PKI . . . 

17/3, K/2 (Item 1 from file: 275) 

DIALOG (R) File 275: Gale 

Group Computer DB(TM) 

(c) 2009 Gale/Cengage. All rights 

reserved. 

0186 8535 Supplier Number: 

17610992 (Use Format 7 Or 9 For FULL TEXT ) 

The Internet and EDI. (electronic data interchange) (Technology 
Information) 

Muiznieks, Vik 

Telecommunications , v29 , nil , p45(3) 

Nov , 1995 
ISSN: 0278-4831 
Language : 

English Record Type: Fulltext; Abstract 

Word Count: 1533 Line 
Count: 00139 

...enhanced mall (PEM) and pretty good privacy (PGP). PEM capabilities are 

described in RFCs 1421 to 1424, and provide for the confidentiality of 

messages via encryption, originator authentication, content 

integrity via message integrity check (MIC) algorithms, and 

non-repudiation if a public key mechanism is used. PGP, a 

privately developed public/private key system, provides mechanisms for 

encryption and authentication. 

For EDI-based security, many companies deploy firewalls... 



17/3, K/3 (Item 2 from file: 275) 

DIALOG (R) File 275: Gale 

Group Computer DB(TM) 

(c) 2009 Gale/Cengage. All rights 

reserved . 

01032028 Supplier Number: 

00522323 

Digital Signatures : A 
Tutorial Survey. 

Akl, S.G. 

Computer , vl6 , n2 , pl5-24 
Feb. , 1983 
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ISSN: 0018-9162 
Language : 

ENGLISH Record Type: ABSTRACT 



Abstract: For various reasons it is desirable in electronic mail 
systems to validate and authenticate message content. In 
public and private- key cryptosystems a digital signature 

that is appended to or integrated into a message can assure that a sender's 

message is received only by the receiver (R) and S. Although relative 

slow, a system such as the Rivest-Shamir-Adleman (RSA) system that uses two 
random 100 decimal digit numbers to generate a key assures message 
integrity. By using the best known algorithm calculating the key would 
take over a billion years of computing time. 
Abstract : 



17/3, K/4 (Item 1 from file: 636) 

DIALOG (R) File 636: Gale 

Group Newsletter DB(TM) 

(c) 2009 Gale/Cengage. All rights 

reserved . 

02977714 Supplier Number: 
46068965 (USE FORMAT 7 FOR FULLTEXT) 



SCIENTIFIC-ATLANTA: S-A licenses Cylink's security 
techniques for digital broadband applications 

M2 

Presswire , p N/A 
Jan 16 , 1996 

Language: English Record Type: Fulltext 

Document Type: Newswire ; Trade 
Word Count: 

547 

...encrypted and exchanged. The identity of the sender and the message 
content can be authenticated — an important capability for multi-provider 
authorisation environments and for validation of orders from 
subscribers . 

A public key-based cryptography system controls the encryption 
and decryption of messages. Each user is assigned two unique 
mathematically-related keys: a published public key, and a secret 
private key. In a cable TV environment, the public key for each 
subscriber's set-top terminal can... 



17/3, K/5 (Item 2 from file: 636) 
DIALOG (R) File 636: Gale 
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Group Newsletter DB(TM) 

(c) 2009 Gale/Cengage. All rights 

reserved . 

02532509 Supplier Number: 
45104635 (USE FORMAT 7 FOR FULLTEXT) 



Security of paper-based systems 

Financial Technology Insight , p N/A 

Nov , 1994 
Language : 

English Record Type: Fulltext 
Document Type: 

Newsletter ; Trade 
Word Count: 122 

Supplier Number: (USE 
FORMAT 7 FOR FULLTEXT) 



Text : 

A digital signature is essentially a very complex checksum, related 
to the content of the message and a number (the 

private key) known only to the sender. A different, but related, 

number (the public key) allows the recipient to check 

who sent the message. In order to tie these keys back to a 

particular organization or individual, it is possible to issue a credit 

card -sized token, called a smartcard. This contains a tiny computer... 



17/3, K/6 (Item 1 from file: 148) 

DIALOG (R) File 148: Gale 

Group Trade & Industry DB 

(c) 2009 Gale/Cengage. All rights 

reserved . 

08016758 Supplier Number: 

17221232 (USE FORMAT 7 OR 9 FOR FULL TEXT ) 
Verisign to offer digital ID services . 



Roberts, Erica 

CommunicationsWeek , n563 , p4(l) 

June 26 , 1995 
ISSN: 0746-8121 
Language : 

English 

Record Type: Fulltext; Abstract 
Word Count: 
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323 Line Count: 00029 



Abstract: ...difficult to assess validity of information received 

over the network and is difficult to verify sources. On-line service providers, 

he says, need to provide content integrity and validation of 

services. Verisign employs public-key cryptography, which 

uses a matched pair of public and private keys to encrypt and 

decrypt messages. 

Abstract : 



17/3, K/7 (Item 2 from file: 148) 

DIALOG (R) File 148: Gale 

Group Trade & Industry DB 

(c) 2009 Gale/Cengage. All rights 

reserved. 

06796891 Supplier Number: 

14023755 (USE FORMAT 7 OR 9 FOR FULL TEXT ) 

NIST's 'victory' will save DSS users an arm and a leg. 

(National Institute of Standards and Technology, digital signature standard) 
(IRM Notebook) (Column) 

Houser, Walter R. 

Government Computer News , vl2 , nl4 , 
p25(l) 

July 5 , 1993 
Document Type: Column 

ISSN: 0738-4300 
Language: ENGLISH 
Record Type: 
FULLTEXT; ABSTRACT 
Word Count: 815 

Line Count: 0 0 064 

...key for decoding. The agency application system uses its private key and 
the citizen's public key to code the messasge so it can be decoded 
only by the intended recipient. 

Even when the message content is not sensitive, public- 
key algorithms can serve as digital signatures, ensuring the 
authenticity and integrity of messages. A sender's mail software can 
"sign" messages by encrypting a "hash" number calculated by running the 
text though a standard... 



17/3, K/8 (Item 3 from file: 148) 

DIALOG (R) File 148: Gale 

Group Trade & Industry DB 

(c) 2009 Gale/Cengage. All rights 
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06181289 Supplier Number: 

13035397 (USE FORMAT 7 OR 9 FOR FULL TEXT ) 

Changes to encryption standard would expand fed users ' options . 

(Federal Information Processing Standard 46-1 for the Data Encryption Standard) 
(Brief Article) 

Schwartz, Karen D. 

Government Computer News , vll , n24 , 
p3(l) 

Nov 23 , 1992 
Document Type: Brief 
Article 

ISSN: 0738-4300 
Language: ENGLISH 
Record Type: 
FULLTEXT 
Word Count: 352 
Line Count: 0 0 028 

...DES revision more consistent with the proposed FIPS for digital 
signatures. The Digital Signature Standard, now in a second public comment 
period, will specify a public-key digital 
signature algorithm and allow users to verify both 
message content and sender identity. 

So far, most agency comments seem to favor renewing DES as is, Smid 
said, but he has received verbal requests to add... 

21/3.K/1 (Item 1 from file: 9) 
DIALOG(R)File 9: Business & Industry(R) 
(c) 2009 Gale/Cengage. All rights reserved. 

01454886 Supplier Number: 24101284 (USE FORMAT 7 OR 9 FOR FULLTEXT) 
Tales from the encryption 

( Problems with early copy protection systems impeded their widespread adoption, but large scale commercial 
software piracy has spurred new interest in finding effective ways to halt this drain on revenues ) 

One to One, n 89, p 51 
December 1997 

Document Type: Journal ISSN: 0268-8786 ( United Kingdom ) 

Language: English Record Type: Fulltext 

Word Count: 3292 (USE FORMAT 7 OR 9 FOR FULLTEXT) 



TEXT: 

...information, CD-Secure2 can also define exactly what conditions the 
software can be used under. It could be try-bef ore-you-buy - offering 30 
days usage without restriction before the disc becomes 

useless unless it is 'bought' with a credit card - or, using pay-as-you-go 
options, it can control the number... 

. . .per copy. Ideally, the replicator needs the CD-Cops disc analysis 
software that provides the original keycode information so that the first 
discs can be checked off the line and the final public 
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key code generated quickly ready for label printing. With just a few 
hours turnaround to produce the public keycode, the delays introduced by 
CD-Cops are . . . 



21/3,K/2 (Item 1 from file: 275) 

DIALOG(R)File 275: Gale Group Computer DB(TM) 

(c) 2009 Gale/( 'engage. All rights reserved. 

021 18629 Supplier Number: 19958165 (Use Format 7 Or 9 For FULL TEXT ) 

Open for business: Web storefront creation software. (12 electronic-commerce products reviewed) (includes related 
articles on elements of an electronic storefront, Editors' Choices, glossary, online-service and ISP templates, offering 
transaction security, business-to-business commerce) (Software Review)(Evaluation) 

Linthicum, David S. 

PC Magazine , vl6 , n20 , P 143(19) 

Nov 18 , 1997 

Document Type: Evaluation 
ISSN: 0888-8507 

Language: English Record Type: Fulltext; Abstract 
Word Count: 12518 Line Count: 00996 

...data security and interoperability between payment schemes. 

Public-key encryption An encryption system that uses two keys, a 
public key for encrypting messages and a private key for 
decrypting messages, to enable users to verify each other's messages 
without exchanging secret keys. 

Secure Electronic Transaction (SET) A secure payment protocol 
developed by MasterCard and Visa designed to ensure security for bank card 
transactions over the Internet. It... 

. . .A public security protocol, also developed by Netscape, that can create 
a secure link between the Web server and the browser. 

SKU Stockkeeping unit; a number designating one specific 
product . 

Taxware A software program, developed by Taxware International, that 
provides detailed tax rate information to commerce servers over the 
Internet . 

Virtual Spin LLC: Cartalog... 



21/3,K/3 (Item 2 from file: 275) 

DIALOG(R)File 275: Gale Group Computer DB(TM) 

(c) 2009 Gale/Cengage. All rights reserved. 

02060529 Supplier Number: 1 9365954 (Use Format 7 Or 9 For FULL TEXT ) 

Role of digital certificates looks secure; but roadblocks to use include no interoperability, too many issuing 
authorities. (Technology Information) 

Kosiur, Dave 

PCWeek,vl4,nl7,pll5(2) 
April 28 , 1997 
ISSN: 0740-1604 
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Language: English Record Type: Fulltext; Abstract 
Word Count: 1506 Line Count: 00124 

. . .A sender can generate a digital signature for a message using a private 
key, but recipients of the signed message need the sender's corresponding 
public key to verify the digital signature. Obtaining 

a copy of the sender's digital certificate is one way of doing this. 

Corporations also can issue digital certificates to... 
...or CAs, will verify each other's certificates as more issuers join the 
marketplace and more people use digital certificates. Right now, there are 
a limited number of well-known, trusted CAs, including but 

not limited to the U.S. Postal Service, Verisign and Entrust Technologies 
Inc., but the number will grow... 



21/3,K/4 (Item 3 from file: 275) 

DIALOG(R)File 275: Gale Group Computer DB(TM) 

(c) 2009 Gale/Cengage. All rights reserved. 

02049612 Supplier Number: 19055885 (Use Format 7 Or 9 For FULL TEXT ) 

E-mail programs. (SoftArc's FirstClass 3.5, StarNine Technologies' Quarterdeck Mail 4.0 and CE Software's 
QuickMail Pro) (Software Review)(Evaluation) 

Beckman, Mel 

Macworld , vl4 , n3 , p48(2) 

March , 1997 

Document Type: Evaluation 
ISSN: 0741-8647 

Language: English Record Type: Fulltext; Abstract 
Word Count: 1346 Line Count: 001 13 

...by the "seat," or user, license control is an important 

issue — particularly if you're setting up man y users. A license key gives a 
specific number of users access to the server, allowing the 

programs to be distributed over a network. All three products have thorough 
end-user documentation, but only. . . 

. . . interserver message routing, batch account administration, and Internet 
interoperability. Users want styled text, forms processing, automatic 
replies, dra g-and-drop attachment handling, a spelling checker, 
public-key encryption, and rule-driven filtering. 

On the server side, both Quarterdeck Mail and FirstClass have 
competent backup mechanisms, routing between message servers, and batch 
account . . . 



21/3,K/5 (Item 4 from file: 275) 

DIALOG(R)File 275: Gale Group Computer DB(TM) 

(c) 2009 Gale/Cengage. All rights reserved. 

01997529 Supplier Number: 18741 144 (Use Format 7 Or 9 For FULL TEXT ) 

Web servers. (Lab Test) (includes related articles on the top products, Netscape Enterprise 2.0 and FTP Esplanade for 
Windows NT, and on Apple's Internet Server Solution) (Evaluation) 

PC User , n289 , P 50(14) 
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August 21 , 1996 
Document Type: Evaluation 
ISSN: 0263-5720 

Language: English Record Type: Fulltext; Abstract 
Word Count: 10664 Line Count: 00828 

...of clients on the network increased. Efficient servers should follow an 
upward trend, until the maximum number of connections is reached. 
Lower-specification products which limit the number of 

concurrent connections start off with a poor score and rapidly get worse. 

Microsoft Internet Information Server 1.0 and Netscape's Enterprise 
2 . 0 ... Internet with just a user name and password, and demonstrates the 
benefits of applications using HTML and JavaScript. However, the whole 
system feels cumbersome and limited. At times response is 

slow, and viewing at 640x480 resolution tends to be cramped. Despite this, 
the interface is easy to use and allows access to every. . .the private key. 
Any message encrypted with the server's private key and the client's public 
key can be decrypted using the client's private key and the 
server's public key. 

Checking sender ID 
Another feature offered with SSL is the ability to check the identity 
of the sender of a message. This doesn't encrypt the message, but still 
creates an exclusive channel between the server and client, where the 
message can be digitally signed. This signature is again confirmed 
using the public key system. 

The SSL protocol requires server administrators to obtain a Key 
Certificate from a certificate authority, which maintains a list of 
authorised certificate holders and. . . 



21/3.K/7 (Item 6 from file: 275) 

DIALOG(R)File 275: Gale Group Computer DB(TM) 

(c) 2009 Gale/Cengage. All rights reserved. 

01861496 Supplier Number: 17433068 (Use Format 7 Or 9 For FULL TEXT ) 

Defending the Unix perimeter, (poor Unix administration can render networks vulnerable to security 

threats)(includes related articles)(Special Report) (Technology Tutorial)(Tutorial) 

Cullen, Cindy 

LAN Magazine , pl49(3) 

Oct , 1995 

Document Type: Tutorial 
ISSN: 1069-5621 

Language: English Record Type: Fulltext; Abstract 
Word Count: 2587 Line Count: 00204 

...The windowing standard for Unix is X Window. It is usually referred to 

as X. Security for X is controlled by the end user. The use of the 

terms client and server can be confusing in relation to X; for 

clarity, the monitor displaying X will be called a display station. The 

user can ... legitimate receiver can decrypt the message with their private 

key. 

Each user's private key can be used to digitally sign a document. The 
corresponding public key is used to verify that the 
document was written by the author and hasn't been tampered with. 

PGP is freeware for noncommercial use, although commercially supported 
versions do . . . 
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21/3,K/8 (Item 7 from file: 275) 

DIALOG(R)File 275: Gale Group Computer DB(TM) 

(c) 2009 Gale/Cengage. All rights reserved. 

0 1 802864 Supplier Number: 1 7 1 62300 (Use Format 7 Or 9 For FULL TEXT ) 
Making your customer's network secure. 

Addelson, Roger 
STACKS , v2 , nl2 , P 27(7) 
Dec , 1994 
ISSN: 1070-8596 

Language: English Record Type: Fulltext; Abstract 
Word Count: 4 1 20 Line Count: 0034 1 

...protection is automatic callback. Again, based upon an ID/password 
combination, the communication program gracefully disconnects the session, 
then calls the user back at a predetermined phone number 

associated with the ID/password. This requires that the remote user call 
from a prearranged phone number. It is particularly cumbersome for remote 
users who . . . 

. . .the administrator to restrict the time, day, and specific workstation 
location from which a particular user may access the network resources. 

Intruder-detection schemes often restrict the number of 
incorrect login attempts associated with an ID. If a preset 
number of incorrect attempts occurs within a specified period of 
time, the account is disabled or the workstation is locked for a 
predetermined period and a... create a digital envelope, which holds an 
RSA-encrypted DES key and DES-encrypted data. You can create a digital 
signature as a means of verifying who you are by encrypting with 
your private key and letting others decrypt your message with 
your public key. 

Congress and the Clinton Administration have proposed a controversial 
new encryption device called the Clipper... 



21/3,K/9 (Item 8 from file: 275) 

DIALOG(R)File 275: Gale Group Computer DB(TM) 

(c) 2009 Gale/Cengage. All rights reserved. 

01801703 Supplier Number: 17162680 (Use Format 7 Or 9 For FULL TEXT ) 

Toward electronic money: some Internet experiments, (includes related articles on RSA's public-key encryption and 
on smart cards for digital money) 

Dyson, Peter E. 

Seybold Report on Desktop Publishing , v9 , nlO , p3(9) 
June 10 , 1995 
ISSN: 0889-9762 

Language: English Record Type: Fulltext 
Word Count: 6493 Line Count: 00607 

...all the proposals for digital money. But encryption by itself cannot 
create trust. It can only transfer distrust. For example, it is said that a 
public-key signature can unambiguously verify the 
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identity of the sender of a message. But that presumes that the public key 
truly identifies the right person. You must then ask how... bank might use 
one key for one-dollar coins, another for five- dollar coins and so on. The 
bank would, of course, publish the corresponding public keys, 
allowing anyone to verify the value of such a coin. When the Pay 
button for an Internet purchase is pressed, your computer contacts the bank 
and asks to download. . .process of guessing at factors rather unrewarding. 
On the other hand, testing whether a given number is prime is fairly easy, 
and there is no limit to the number of primes that exist. 

In the RSA scheme, encryption keys are large prime numbers, and are 
always chosen in pairs. (By large, we mean at... 

. . .key. Thus it is possible to publish one of the keys, provided you keep 
the other one secret. 

There are two main uses for a public-key encryption 
system: sending secret messages and proving your identity. They use 
the public and private keys in opposite ways: 

To send a message that only the intended recipient can decode, you 
look up his public key in a directory. (On the... 



21/3.K/10 (Item 9 from file: 275) 

DIALOG(R)File 275: Gale Group Computer DB(TM) 

(c) 2009 Gale/Cengage. All rights reserved. 

01695703 Supplier Number: 16192274 (Use Format 7 Or 9 For FULL TEXT ) 

Cyber-privacy: in cyberspace, the walls have ears. So check out the RSAREF cryptography toolkit and keep your E- 
mail safe. (RSA Data Security Inc) (Tutorial) 

Lane, Alex 

Computer Shopper , vl4 , n9 , p594(3) 
Sept , 1994 

Document Type: Tutorial 
ISSN: 0886-0556 

Language: ENGLISH Record Type: FULLTEXT; ABSTRACT 
Word Count: 2305 Line Count: 00178 

. . .you to encrypt the message with your private key as well, so that upon 
receipt the message will only become readable when decrypted with your 
public key, thus proving you sent the message. 
Message Digests and Data Signatures 

Just as a fingerprint identifies a person, a message digest can be 
used to verify data. . .math performed in RSAREF makes heavy use of large 
prime numbers, so large that most programming languages can't handle them. 
A 1,024-bit number (the maximum size defined for an RSA 

modulus) occupies 128 bytes! Such components of public- and private-key 
structures are stored in fixed-length arrays of unsigned characters with... 
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Language: ENGLISH Record Type: FULLTEXT 
Word Count: 249 Line Count: 00020 

...sender. A user with a private Ripem key — similar to a very long, 
nonsensical password — can sign a message so that anyone with the 
associated public key can verify the identity of the 

originator. Apple uses this technology to ensure the reliability of 
PowerShare and PowerTalk communications. 

RSA previously distributed a freeware reference implementation of its 
cryptographic tools, but, until now, this software was approved only for 
individual use. Now the company has relaxed restrictions and allows 
use within any custom application, as long as the resulting product 
is not sold or used to provide a for-profit service. 

Ripem code is available... 
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...each 512 bits long. The public and private numbers are mathematically 
related so that data is encrypted using the private key and decrypted using 
the public key. This makes it possible to verify 

exactly who sent the encrypted information. RSA is considered nearly 
impervious to brute force attack. It is based on factoring extremely large 
numbers, which requires ... primarily protect a system from break-in attempts 
based on repeated trials of password cracking. The following are Novell's 
guidelines : 

Recommended default account balance/restrictions: (use 

default) 

Account has expiration date: no 
Date account expires: (use default) 
Limit concurrent connections: yes 
Maximum connections: 1 
Require password: yes 
Minimum password length: 5... 
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...forms of protection establish rights that are enforceable in law. These 
rights typically allow for the recoupment of damages from private parties, 
criminal fines, or restrictions on the use of the unlawfully 
gathered information where the transgression occurs by the government. 

Legal protections are likely to clarify the underlying privacy 
interests, but are . . .A related use for cryptography is the authentication 
of messages. Using public key encryption, a user can encrypt a message 
using his or her own private key. The recipient of the 
message can then determine the authenticity of the messages by using 
the sender's public key. 

To be effective, standards must be established so that users in 
different networks will be able to exchange messages. Anything less than a 
full implementation... 

...are collected should be specified not later than at the time of data 
collection and the subsequent use should be limited to those purposes. 

* The Use Limitation Principle states that personal 
data should not be disclosed for secondary purposes except with the consent 
of the data subject or by authority of law. . .the service, detailed profiles 
on users could be developed. 

Regulatory authorities in the U.S. and Canada generally favored this 
second view and recommended strong restrictions on the use of 
the service. The policy debate surrounding Caller ID, and questions 
regarding the disclosure of personal data, are likely to continue as the 
service is . . . 
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...introduce products and form partnerships that will enable delivery of 
the following security services: 
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— Certificate Management - Security Dynamics believes that in the 
future, certificates, which attest to the authenticity of the 
owners of public keys, will be increasingly used for 

identification and authentication, digital signatures and to support secure 
email (S/MIME), secure browser communications (with SSL) and secure 
communications over the Internet (S/WAN) . A certificate authority (CA) 
serves as a trusted third party that vouches for the authenticity of 
owners of public keys. 

As part of its ESS certificate services, Security Dynamics plans to 
simplify the management of diverse certificates. Specifically, Security 
Dynamics intends to offer a software ... accessible through Web browsers, to 
manage all Enterprise Security Services. 

"The ESS architecture is providing our customers with a framework for 
understanding how public and private key, certificates, and 
other encryption technologies will be deployed on a proven security 
platform - ACE/Server - to deliver real corporate security applications," 
said Dave Power. 

Pricing and Availability 

Version 3.0 of the ACE/Server is currently... 

...development, undetected software errors or bugs, changes in product 
pricing policies, competitive pressures, technical difficulties, market 
acceptance of the new products and technologies, including without 
limitation the use and implementation of various certificate 
management and key management technologies, changes in customer 
requirements and government regulations, delays in developing strategic 
partnerships, general economic conditions... 
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...and then compared with the stored form. Matching results in the EDI 
service being made available, but mismatch terminates the log-on. There is 
a limit set to the number of log-on retries which may be made 
before all further attempts are barred and network services staff alerted. 

These network services staff follow a... for the data transmission 
session. The message's digital signature is encrypted using A's private 
key, and decrypted by recipient B using A's public key, which 
has been sent to him. 

Successful decryption proves not only the integrity of the 
entire EDI message but also that the private key, held by A, is the only 
key that could have ... factor on the adoption of EDI; legal rules of 
evidence may be less than ideal while not intentionally forming a barrier 
to progress. The wide use of the UNCID rules should be of 
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great benefit in allowing parties to foresee and forestall potential 
problems . 

As use of EDI grows there will be an increasing need. . . 
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. . .A sender can generate a digital signature for a message using a private 
key, but recipients of the signed message need the sender's corresponding 
public key to verify the digital signature. Obtaining 
a copy of the sender's digital certificate is one way of doing this. 
Corporations also can issue digital certificates to... 

...or CAs, will verify each other's certificates as more issuers join the 
marketplace and more people use digital certificates. Right now, there are 
a limited number of well-known, trusted CAs, including but 
not limited to the U.S. Postal Service, VeriSign and Entrust Technologies 
Inc., but the number will grow... 
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. . .mathematically different implementation of the asymmetrical model, and 
it is the method employed by DSN's NetFortress. 

THE REAL YOU. Using public or public and private keys is 
the foundation of encryption, but keys can't verify a recipient's 
identity . 

"When you're talking about sending secured messages, there are two 
goals you've got. One is to make sure that... Era Act of 1996 also sits 
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before the Senate. 

All three laws would relax the 40-bit restriction on keys as well as 
eliminate other restrictions on international use and 
development of encryption. 

Officials of U.S. corporations look forward to these changes and 
believe that such changes would improve their ability to compete... 
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...s success in making "cash" transactions over the Internet, the 
commercial product that may emerge from the endeavor could have a leg up on 
the limited number of EDI applications already on the market. 

Potential competitors include Premenos Corp., Harbinger Corp., General 
Electric Information Services Inc., Sterling Commerce Inc. and Electronic 
Commerce . . . 

...which uses RSA Security Inc.'s dual-key cryptography algorithms in 
conjunction with standard MIME (Multipurpose Internet Mail Extension) . The 
RSA algorithms use public and private keys. 

The process starts with Livermore Labs' MIC (Message Integrity 
Check). The MIC is encrypted with the labs' private 
key, and the encrypted MIC is embedded in the Internet E-mail 
message as a MIME attachment. 

The process automatically produces a DES (Digital Encryption Standard 
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...Reynolds, a senior consultant with EDS Corp.'s management-consulting 
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services in Piano, Texas. One answer is to create some kind of 
certification authority to validate public keys and to 

issue certificate revocation lists if a key is lost or stolen. Digital 
certificates - documents that vouch for the ownership of a public key. . . 

. . .might be a continent away. Cyber notaries could approve the 
certification and allow the deal to proceed under an umbrella of trust. 
'We're creating rules for the use of certification 
authorities, ' says Baum. 

No one knows what impact the Republican Party's sweep of Congress will 
have on either Clipper or the government... 
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. . .you may receive with each piece of e-mail, receipt and delivery can be 
slow. Some of the services permit you to receive only a limited 
number of messages each week, and some may store waiting mail on the 
service for only a week, then delete it. Also, while these services say... 

...The character string is a calculation based on the sender's secret key 
and the contents of the message. To authenticate a message, the recipient 
checks it with the sender's public key. 

Encryption. The process of encoding a document so others can't read 

it. 

Keys. In the RSA scheme, you use a public key and a... 
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. . .mathematically different implementation of the asymmetrical model, and 
it is the method employed by DSN'S NetFortress. 

THE REAL YOU. Using public or public and private keys is 
the foundation of encryption, but keys can't verify a recipient's 
identity . 

"When you're talking about sending secured messages, there are two 
goals you've got. One is to make sure that... Era Act of 1996 also sits 
before the Senate. 

All three laws would relax the 40-bit restriction on keys as well as 
eliminate other restrictions on international use and 
development of encryption. 

Officials of U.S. corporations look forward to these changes and 
believe that such changes would improve their ability to compete... 



21/3,K/25 (Item 3 from file: 148) 

DIALOG(R)File 148: Gale Group Trade & Industry DB 

(c) 2009 Gale/Cengage. All rights reserved. 

08753456 Supplier Number: 18371288 (USE FORMAT 7 OR 9 FOR FULL TEXT ) 
Data security: key issue in an age of pervasive computing.(Cover Story) 

Strassberg, Dan 

EDN , v41 , n8 , p48(7) 

April 11 , 1996 

Document Type: Cover Story 

ISSN: 0012-7515 

Language: English 

Record Type: Fulltext; Abstract 

Word Count: 4164 Line Count: 00334 

. . .writing in which units of plain text are substituted according to a 
predetermined key, the key to such a system, or a ciphered message." 
Cryptographers use the terms "plaintext" and "cipher-text" to 
refer to the content of messages before and after encryption. 

Although encryption dates back at least to the Middle Ages... Such 
modifications and forgeries are more difficult with these protocols than 
with handwritten signatures. 

Still, message originators can disavow digital signatures. Someone who 
uses his secret key to encrypt a message and thus guarantee 
the message's authenticity can claim that, before he encrypted the 
message, a third party gained access to the key without his knowledge. The 
originator can claim that he... 
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...for file transfer, hypertext transfer protocol (HTTP) for World Wide Web 
access, and telnet for remote log-ins. Each of these application protocols 
presents different limitations with respect to use and 

value-added functions such as security, encryption, and non-repudiation. 

Taking mail as an example, SMTP, as defined by the Internet 
Engineering Task Force (IETF) standard request for comment (RFC) 822, 
performs the message transmission function, but only supports seven-bit 
American standard code for information interchange (ASCII) transmissions, 
limits the number of recipients, and often limits the maximum 
message size. Modifications to SMTP were needed to address the needs of 
EC/EDI. These modifications came in... 

. . .PEM capabilities are described in RFCs 1421 to 1424, and provide for the 
confidentiality of messages via encryption, originator authentication, 
content integrity via message integrity check (MIC) algorithms, and 
non-repudiation if a public key mechanism is used. PGP, a 
privately developed public/private key system, provides mechanisms for 
encryption and authentication. 

For EDI-based security, many companies deploy firewalls... 
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...addition, NetWare Directory Services differ from Banyan's in the 
following areas: 

* Flexibility. NDS can have a hierarchical tree from two levels to an 
unlimited number. Banyan has a fixed three-level hierarchy 

that cannot adjust to different organizational needs. 

* Reliability. NDS is a global, distributed, and replicated database 
that protects against single points of... 

...synchronization overhead. In larger organizations, Banyan's performance 
starts to degrade. 

* Security. The network login and background authentication associated 
with NDS are secured with a proven industry standard public 

key technology. Banyan uses its own private token-based technology. 

Q: With the ability to run application in Ring 3, can NetWare function 
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as an application. 
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. . .to code the message so it is uniquely readable by the intended 
recipient. Only the recipient knows the private key necessary to decrypt 
the message. 

Public-key algorithms can serve as digital signatures, 
ensuring the authenticity and integrity of messages. Messages can be 
"signed" by encrypting them with the sender's private key; the signature 
can be verified by the receiver... 

...decodes properly, the receiver knows that the sender actually sent it. 

The basic difference between DSS and RSA is that RSA Data Security 
owns the rights to commercial use of the RSA encryption 

algorithm. NIST has applied for a patent for the DSS algorithm, which NIST 
has put into the public domain, making it... 
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...and uses that key to code the message. However, only the intended 
recipient should know the secret private key necessary to decrypt the 
incoming message. 
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Public-key algorithms can serve as digital signatures, 
ensuring the authenticity and integrity of messages. Messages can be 
"signed" by encrypting them with the sender's private key. The signature 
can be verified by the receiver... 

...Institute of Standards and Technology is developign a public-key digital 
signature standard for the federal government. There already are several 
such techniques, but patent restrictions complicate their use 

The holders of patent rights would expect royalty payments from 
commercial developers and users. Furthermore, because the recipient cannot 
tell from the incoming message which. . . 

...still is looking at hashing functions to find one that complements the 
standard. The U.S. Postal Service has been approached to serve as a 
certifying authority for exchange of public keys. If 

USPS declines, perhaps the public telephone or data networks would step up. 

NIST typically works with industry to develop national standards that 
then are . . . 
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Financial Times FullText (via ProQuest): No relevant results. 

Internet & Personal Computing Abstracts (via EBSCOhost): No relevant results. 
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